HANA Database Brute Force Attack
Learn how DefenceMore OCA for SAP protects critical HANA database users from password attacks.
Case Study #019.01
Scenario
A brute-force attack is being attempted on the HANA Database targeting the 'SYSTEM' user and other critical users through password trial attempts.
Impact
The 'SYSTEM' user is the most powerful account on the HANA DB, so activities and password changes made by this user should be closely monitored.
DefenceMore OCA Capabilities
Defencemore OCA's H003 control lists all failed login attempts to the system. The H006 control tracks and reports password change activities on the database. This ensures that any password change for the 'SYSTEM' user is reported, and failed login attacks are highlighted.
Related Checks
- H003 HANA Unsuccessful Login Attempts
- H006 HANA Last Password Change Time