Transitioning from SAP Code Vulnerability Analyzer (CVA) to the Cybersecurity Extension for SAP involves planning the removal of legacy CVA components and preparing your SAP Solution Manager environment. This process ensures your vulnerability management and threat detection capabilities remain secure and integrated within your existing application lifecycle management platform.
Executive Summary
The Cybersecurity Extension for SAP, developed by SAP partner Layer Seven Security, serves as a specialized alternative to SAP CVA for managing custom code security and SAP threat detection. Because the extension is designed as an add-on for SAP Solution Manager, transitioning requires aligning your infrastructure with Solution Manager’s standard configuration.
Successful migration involves two main phases: decommissioning the legacy SAP CVA landscape and configuring the new extension within Solution Manager. Once the migration is complete, organizations can safely remove SAP CVA consoles, sensors, users, and add-ons from their SAP systems. Because Solution Manager is a widely adopted platform included in SAP support, leveraging it for security extension management streamlines the transition process for the over 12,000 SAP customers currently using the platform for application lifecycle management. This guide focuses on the critical step of system preparation required to ensure the extension functions correctly within your environment.
Key Takeaways
- The Cybersecurity Extension for SAP is a direct alternative to SAP CVA for SAP vulnerability and threat management.
- The extension functions as an add-on within SAP Solution Manager, leveraging existing SAP support rights.
- Transitioning requires removing all SAP CVA consoles, sensors, users, and add-ons from your SAP landscape.
- System Preparation in SAP Solution Manager is the mandatory first step for a successful installation.
What is the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP is an SAP Solution Manager add-on developed by Layer Seven Security that provides comprehensive vulnerability management and threat detection for SAP environments. It serves as an alternative to SAP CVA, allowing organizations to maintain robust security oversight without relying on the legacy CVA framework. By integrating directly into Solution Manager—a platform already used by thousands of SAP customers—the extension simplifies the management of custom code security and SAP system integrity.
How do I prepare SAP Solution Manager for the transition?
To prepare for the transition, you must complete the “System Preparation” phase within the SAP Solution Manager Mandatory Configuration. You can begin this process by executing transaction SOLMAN_SETUP or by navigating to the work center labeled “SAP Solution Manager Configuration – Configuration (All Scenarios).” Once there, select “System Preparation” under the “Cross Scenario Configuration” menu. Ensure the status for every step is marked as green, indicating they are completed. If any steps are red or yellow, follow the provided guided procedures to resolve those incomplete items before proceeding.
Next: Check Infrastructure Preparation >>>
Frequently Asked Questions
What components should be removed after switching to the Cybersecurity Extension for SAP?
Once you have transitioned, you should remove the SAP CVA consoles, sensors, users, and any remaining SAP CVA add-ons from your SAP landscape to ensure a clean environment.
Is the Cybersecurity Extension for SAP a standalone product?
No, it is an add-on for SAP Solution Manager. It is designed to work within the standard monitoring and diagnostics framework already used by many SAP customers.
How do I check if my SAP Solution Manager is ready?
You must run the SOLMAN_SETUP transaction and verify that the “System Preparation” steps in the Mandatory Configuration are all marked as green (completed).