Azure Sentinel for SAP: Cloud-based Implementations and Security Operations | SC-200 Exam Answer

Azure Sentinel for SAP: Cloud-based Implementations and Security Operations

Question

Azure Sentinel for SAP only supports cloud-based implementations of SAP.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B.

Correct Answer: B.

© 36

Rules by severity

ee
Informational (0)

Active rules High (16) I Medium (18) HLow 2)

Active rules Rule templates
[2 Search Severity : All Rule Type : All
CO severity ty NAME Ty

oO | High

DOOOOOO0O0O000

High
High
High
High
High
High
High
High
High
High
High
High

High

Advanced Multistage Attack Detection
SAP - High - HANA DB - Assign Admin Authorizations
SAP - High - Client Configuration Change

SAP - High - HANA DB - User Admin actions

SAP - High - RFC Execution of a Sensitive Function Module
SAP - High - HANA DB - Deactivation of Audit Trail

SAP - High - HANA DB - Audit Trail Policy Changes

SAP - High - Deactivation of Security Audit Log

SAP - High - Sensitive privileged user change

SAP - High - System Configuration Change

SAP - High - Execution of a Sensitive ABAP Program

SAP - High - Sensitive privileged user logged in

SAP - High - Function Module tested

SAP - High - Login from unexpected network

Status : All

RULE TYPE ty

S6eSeGCGBCBCEG8G8668

66

3

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

Scheduled

STATUS Ty

2)

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

Enabled

TACTICS

Ones

“ Privilege Escalation

=o
® Privilege Escalation
& Bo
ome
wea
@ eo
FE
mee
way
ne
aes

A initial Access

LAST MODIFIED Ty

05/14/20, 03:40 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM
03/18/21, 08:36 PM

03/18/21, 08:36 PM

Reference:

The statement "Azure Sentinel for SAP only supports cloud-based implementations of SAP" is false.

Azure Sentinel, which is a cloud-native security information and event management (SIEM) solution offered by Microsoft, integrates with various data sources, including on-premises and cloud-based data sources. This includes SAP systems, both on-premises and cloud-based.

Azure Sentinel provides pre-built connectors for SAP systems that allow customers to ingest logs and events from SAP systems into Azure Sentinel for monitoring and analysis. These connectors support both on-premises and cloud-based implementations of SAP, including SAP ECC, SAP S/4HANA, SAP SuccessFactors, and others.

In addition to the pre-built connectors, Azure Sentinel also supports custom data connectors, which can be used to ingest data from SAP systems or other sources that are not supported out-of-the-box.

In summary, Azure Sentinel can be used to monitor and secure both on-premises and cloud-based SAP systems, making the statement "Azure Sentinel for SAP only supports cloud-based implementations of SAP" false.