Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

eTrust and SAP ABAP/J2EE

Former Member

‎03-31-2009 8:15 PM

0 Kudos

Hello Security folks,

We are implementing SAP J2EE and ABAP across multiple systems. We have been working with CA eTrust to assist us in hardening the OS platform. We are running on AIX.

We recognize that eTrust does not use the SAP technology for external integration (which is why it CANNOT be certified in the same way).

Have any folks worked with eTrust and an SAP system on the same host?

We have found the "Executive Summary" (by SAP) for the eTrust and they have stated that it works with SAP Systems - like R/3 4.7 Enterprise. This system never had a J2EE stack included so I am wondering if J2EE is also workable while running eTrust.

The second question is with Re: to the policy files - the "Exec Summary" shows that there are two that should be implemented (one for OS generally, one for SAP). Are these from SAP or from CA?

Has anyone had experience with CA eTrust on SAP hosts?

Thanks,

Judson

1 REPLY 1

Former Member

‎04-16-2009 8:58 PM

0 Kudos

Hi again,

We are still looking for an SAP specific eTrust configuration guide and baseline policy files.

Our SAP representative has suggested that we enter an SDN message on this - and that there are SAP security specialists that review these contents.

Your assistance in locating this information is greatly appreciated.

Warm regards,

Judson