TOP 5 Security Measures for SAP NetWeaver ABAP

What if you had only very limited resources and numerous SAP NetWeaver instances in your enterprise, but you still want to ensure at least basic security measures are met. Here we highlight the TOP 5 security measures which you can validate on your systems which will provide rudimentary security. The validation steps are described in a way that no deep technical understanding is required.

In order to validate the measures we will use SAP GUI (SAP Logon), so go on and fire it up and log on to your target system.

Measure #1: Default Passwords

Here we want to identify if there are any standard accounts with default passwords.  Typical accounts are SAP*, TMSADM, DDIC, SAPCPIC and EARLYWATCH. See SAP Default Passwords for details on the actual common password.