SAP Knowledge Base Article - Preview

3291122 - Configure HANA to require clients to use TLS version 1.2 using Authenticated Encryption with Associated Data (AEAD) capable ciphers

Symptom

Using a third-party tool for Vulnerability Management and Threat Detection & Response, something like Onapsis is reporting a problem for HANA:

Configure the server to require clients to use TLS version 1.2 using Authenticated Encryption with Associated Data (AEAD) capable ciphers.

… The only option is to disable the affected protocols (SSLv3 and TLS 1.0). The only fully safe configuration is to use Authenticated Encryption with Associated Data (AEAD), e.g. AES-GCM, AES-CCM in TLS 1.2.


Read more...

Environment

HANA 2.0 Platform Edition

Product

SAP HANA, platform edition 2.0

Keywords

KBA , HAN-DB-SEC , SAP HANA Security & User Management , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.