eTrust and SAP ABAP/J2EE
Hello Security folks,
We are implementing SAP J2EE and ABAP across multiple systems. We have been working with CA eTrust to assist us in hardening the OS platform. We are running on AIX.
We recognize that eTrust does not use the SAP technology for external integration (which is why it CANNOT be certified in the same way).
Have any folks worked with eTrust and an SAP system on the same host?
We have found the "Executive Summary" (by SAP) for the eTrust and they have stated that it works with SAP Systems - like R/3 4.7 Enterprise. This system never had a J2EE stack included so I am wondering if J2EE is also workable while running eTrust.
The second question is with Re: to the policy files - the "Exec Summary" shows that there are two that should be implemented (one for OS generally, one for SAP). Are these from SAP or from CA?
Has anyone had experience with CA eTrust on SAP hosts?