• SAP HANA

saphana
  1. Help Center
  2. SAP HANA
  3. Automatic Deployment User Guide
  4. Single-Node Deployment Without HA Required
  5. Operation Instructions (Deployment Using the Console)
  6. Creating a Security Group

Creating a Security Group

Scenarios

You need to create a security group for nodes in the SAP HANA system so that they can communicate with each other based on the specified policies.

Procedure

  1. Log in to the RTS console again and upload the template file.
  2. For Main File, select SAP-HANA-Resource-SingleNode-SecurityGroup.template to create a security group.
  3. Click Check Syntax to ensure that the syntax is correct.

    Figure 1 Checking syntax (to create a security group for SAP HANA)

  4. Click Next and enter the required parameters.

    Configure hana_service_cidr based on planning and keep hana_instance_num consistent with the instance number used for installing SAP HANA Instance. Otherwise, SAP HANA Studio cannot connect to SAP HANA.

    Figure 2 Configuring security group parameters (for SAP HANA)

  5. Click Next, and then Submit after confirming that the stack information and parameters are correct.
  6. View information about the created stack and record the ID.

    Figure 3 Creating an SAP HANA security group successfully

  7. In Main File, select SAP-HANA-Resource-NatAndStudio-SecurityGroup.template to create a security group for HANA Studio.
  8. Click Check Syntax to ensure that the syntax is correct.

    Figure 4 Checking syntax (to create a security group for HANA Studio)

  9. Click Next and enter the required parameters.

    Specify port_min and port_max based on the network plan.

    Figure 5 Configuring security group parameters (for HANA Studio)

  10. Click Next, and then Submit after confirming that the stack information and parameters are correct.
  11. View information about the created stack and record the ID.

    Figure 6 Creating a HANA Studio security group successfully

  12. Repeat Step 7 to Step 11 to create a security group for the NAT server.