The SAP Landscape has become more and more complex over time. Servers are added frequently. Interconnection between systems is becoming more important every day. Data exchange with non SAP systems is also gaining traction. But what about the security related aspects? Do they get as much attention as they are supposed to get? Are only allowed exchanges of data possible? Is a small SAP note enough to ensure that companies pay attention to the gateway to their valuable information?

The answer in most of the cases is NO.

“Since the gateway is an application server interface to other systems (to other SAP systems, to external programs, and so on), security conditions must be met, as appropriate” so the statement of SAP. But how can you be sure that the parameters for your SAP Gateway are properly set?

Sietze Roorda, technical consultant at wikima4, developed a simple tool to test the configuration of your SAP Gateway in a few minutes. As various parameters are involved, we have developed a Penetration Test that shows you not only the security gaps, but also gives you the straightforward information on how to close them.

Take a look at our flyer (PDF) (German version only)