A new support package stack for SAP HANA is released. SPS11 has come up with so many enhancements like regaining instant data access while failure, new prevention mechanism for the execution of malicious codes trying to access user data, a new security dashboard in SAP HANA Cockpit, advance analytics on streaming data, spatial data partitioning for geospatial data and lot others.
The SPS11 is available on SAP Marketplace with release notes and documentations. There is a quite big change happened in the new support package stack , we are here to discuss about the major changes done in Security part.
In SAP HANA Cloud Cockpit, two new groups added 1) SAP HANA Security Overview and 2) SAP HANA Certificate Management. In first one , Security Overview group, network security information of internal communication and external communication setup is provided, along with this data storage security information and auditing policies information are available.
Whereas second group is all about to managing the SAP HANA Certificates which are stored in the file system, this group provides the privilege of handling the certificates from SAP HANA Cockpit web interface.
"A new user authentication setting is introduced for lock mechanism in case wrong credentials are provided, now ""Exempt SYSETEM user from locking"" option would prevent the lock for internal users , specially System Users . A new parameter ""password_lock_for_system_user"" is introduced to set the exemption true through SQL."
One of other security changes are like TLS/SSL is automatically enabled for internal communication in a multi-host HANA system, even for communication between processes on same host. This new feature would be presented by a new parameter [comunication] ssl_local in the global.ini system properties file . There are other changes which are not discussed here could be found on the following url.