/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- The response header named "Server" is populated with the value "SAP" in all Cloud Integration iFlows.
- This behavior occurs irrespective of the iFlow or endpoint type, whether it is a direct Cloud Integration URL or an API URL.
- Concerns regarding risk of "Disclosing the server’s name can help an attacker understand the underlying technology stack and potentially exploit known vulnerabilities associated with that stack".
Read more...
Environment
- Cloud Integration
- Integration Suite
Product
SAP Integration Suite all versions
Keywords
response header, server header, SAP header, HTTP adapter, Cloud Integration, iFlow, CPI URL, API URL, 200 response code, security concern, header value , KBA , LOD-HCI-PI-OPS , Cloud Operations , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)