Learning notes from the learning journey: Installing and Administering SAP HANA to take the Certification "SAP Certified Associate - Database Administrator - SAP HANA".
- Illustrating the security functions:
Cockpit provides several security-related titles: Data Encryption, Auditing, User & Role Management, Authentication, and Trust Config. Also, these admin tasks can be carried out with SQL Commands.
Security store used:
SSFS (Secure Stores in the File System): single file in the local file system that hosts the encryption keys for all tenants. Require system permissions as adm.
LSS (Local Secure Store): stores and securely manages encryption keys, root keys, and sensitive data under a different operating system (crypt).
- Encryption:
DATA VOLUME ENCRYPTION: protects the data area on disk, while redo log encryption projects the logs are on disk.
- Auditing:
Changes to the auditing configuration in one database do not affect auditing in other databases in the SAP HANA System.
Only actions executed INSIDE of the database by SQL statement can be recorded, even if it is not successful.
Top comments (0)