Case Study #020.01

Scenario

A ordinary user is granted 'DATA ADMIN' privileges on the live HANA Database.

Impact

Database-level authorizations granted to users on the HANA Database should be constantly monitored. Without such control, malicious users could potentially harm the system.

DefenceMore OCA Capabilities

Defencemore OCA's H009 control lists all authorization assignments made. The H011 control shows role-based authorizations. The H012 control tracks and reports all critical activities performed in the system.

Related Checks

• H009 HANA Critical Authorizations
• H011 HANA Granted Critical Roles
• H012 HANA Critical Events