Maniman man
asked on
SAP HANA vulnerability threat report.
The user self-service tools of SAP HANA contain some vulnerabilities and in order to prevent it , we have to update the systems or desactivate the the self-service tool.
In order to to determine wheather the the self-service tool is activated or not, we need to SQL the HANA database and query the folowing:
SELECT NAME, STATUS FROM "_SYS_XS"."SQL_CONNECTIONS " WHERE NAME =
'sap.hana.xs.selfService.u ser::selfS ervice'
However it is not specified what result to expect if the tool is active, or not. The behaviors that I have so far on different systems are sligtly different.
Sometimes after the query, nothing happen. You go to the the next line. At times you are prompt for a username, others receive the following error:
Password:=*-10709 Connect Failed (No reachable host left).
I would like to know what result to expect when executing above query when self-user tool is active and vise versa.
Thank you all for the help
In order to to determine wheather the the self-service tool is activated or not, we need to SQL the HANA database and query the folowing:
SELECT NAME, STATUS FROM "_SYS_XS"."SQL_CONNECTIONS
'sap.hana.xs.selfService.u
However it is not specified what result to expect if the tool is active, or not. The behaviors that I have so far on different systems are sligtly different.
Sometimes after the query, nothing happen. You go to the the next line. At times you are prompt for a username, others receive the following error:
Password:=*-10709 Connect Failed (No reachable host left).
I would like to know what result to expect when executing above query when self-user tool is active and vise versa.
Thank you all for the help
Probably expected result is list of active connections of that type.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.