Hands-on Sessions @ DSAG TechXChange 2025

Introduction

In episode 235 of our SAP on Azure video podcast we talk about DSAG TechXChange 2025. We are recording this session on Tuesday. Next Friday (so actually one day before we publish this video), we have 5 different hands-on labs at the DSAG TechXChange 2025 event. You might ask: well, why do I care? I am not even attending? Or if you are, you might not have been able to sign-up, because all the sessions are fully booked.
Well, the cool thing is that all the sessions are document and published on GitHub now. So if you were not able to attend, you can still take a look at the tutorials, which guide you through the process. In most cases, you can easily substitute the setup that we are providing for the event, with envorinment that are available in a trial. With this we hope you can also experience the benefits of integrating SAP with Microsoft. To give you a glimpse of what we have prepared, I have some of the contributors for the sessions with us today: Martin, Martin and Michael from SAP. Before we take a look at the sessions, lets start with a quick introduction.

Link to the GitHub Repo: https://github.com/MartinPankraz/DSAGTechXChange25

Find all the links mentioned here: https://www.saponazurepodcast.de/episode235

Reach out to us for any feedback / questions:

• Robert Boban: https://www.linkedin.com/in/rboban/
• Goran Condric: https://www.linkedin.com/in/gorancondric/
• Holger Bruchelt: https://www.linkedin.com/in/holger-bruchelt/

#Microsoft #SAP #Azure #SAPonAzure #DSAG #DSAGTT25 #HandsOn #Copilot #Security

Summary created by AI

• Introduction and Overview:
• Holger introduced the SAP on Azure Video podcast, mentioning the upcoming DSAG Tech Exchange 2025 and the fully booked hands-on labs. He highlighted that the sessions are documented and published on GitHub for those who couldn’t attend.
  • Podcast Introduction: Holger introduced the SAP on Azure Video podcast, mentioning the date and episode number. He welcomed the audience and introduced the co-hosts, Robert and Goran.
  • DSAG Tech Exchange: Holger discussed the upcoming DSAG Tech Exchange 2025, highlighting that it will feature five different hands-on labs. He noted that all sessions are fully booked but emphasized that the sessions are documented and published on GitHub for those who couldn’t attend.
  • Session Documentation: Holger explained that the sessions are documented and published on GitHub, allowing those who couldn’t attend to access the tutorials and follow the process. He mentioned that most setups provided for attendees can be substituted with trial environments.
• Introduction of Contributors:
• Holger introduced the contributors for the sessions, including Michael Schmitt, Martin Pankraz, and Martin Raepple, who provided brief introductions about their roles and involvement in the sessions.
  • Michael Schmitt: Michael Schmitt introduced himself as a product manager for SAP Enterprise Threat Detection. He mentioned his involvement in a hands-on session about a hack session with the integration of SAP Enterprise Threat Detection and Microsoft Sentinel.
  • Martin Pankraz: Martin Pankraz introduced himself as a product manager at Microsoft. He highlighted his role in scenarios where Microsoft collaborates with SAP and expressed excitement about the upcoming hack session, which exemplifies the collaboration between both product teams.
  • Martin Raepple: Martin Raepple introduced himself as a technical program manager with Microsoft. He mentioned his collaboration with Viggi Mashima from SAP on a program to help joint Microsoft and SAP customers migrate from SAP Identity Management to Microsoft Entra ID.
• SAP Enterprise Threat Detection and Microsoft Sentinel Integration:
• Michael Schmitt and Martin Pankraz discussed their session on integrating SAP Enterprise Threat Detection with Microsoft Sentinel. They explained the importance of this integration for securing SAP landscapes and the additional value it provides.
  • Integration Overview: Michael Schmitt and Martin Pankraz discussed the integration of SAP Enterprise Threat Detection (ETD) with Microsoft Sentinel. They emphasized the importance of this integration for securing SAP landscapes and the additional value it provides by combining SAP-specific security content with broader IT infrastructure data in Sentinel.
  • Session Details: They described the session as a hands-on exercise where participants will learn how to detect and counteract security threats using the integrated solution. The session includes a red team/blue team exercise to demonstrate the practical application of the integration.
  • Technical Insights: Michael explained that the integration allows for the detection of security threats originating from foreign IP addresses and other suspicious activities. He highlighted the ability to correlate SAP-specific alerts with broader IT infrastructure data in Sentinel, providing a comprehensive security overview.
• Migration from SAP Identity Management to Microsoft Entra ID:
• Martin Raepple explained the session on migrating from SAP Identity Management to Microsoft Entra ID, highlighting the importance of this transition for joint customers and the customization of workflows in Entra.
  • Migration Overview: Martin Raepple explained the session on migrating from SAP Identity Management (IDM) to Microsoft Entra ID. He highlighted the importance of this transition for joint customers, especially since SAP IDM will be end of maintenance in 2027.
  • Customization of Workflows: Martin discussed the customization of workflows in Entra, emphasizing that the migration is more of a modernization or transformation rather than a simple migration. He explained that customers often need to customize identity and access management workflows to meet their specific business requirements.
  • Hands-On Scenario: Martin described the hands-on scenario where participants will follow a familiar use case of a user requesting developer-level access to an SAP system. The session will cover self-service UI design, workflow customization, SAP backend system integration, and permission management across SAP and Entra.
• Secure SAP Apps Integration with Microsoft:
• Martin Pankraz discussed the session on secure SAP apps integration with Microsoft, focusing on principle propagation and the use of templates to simplify the process.
  • Integration Overview: Martin Pankraz discussed the session on secure SAP apps integration with Microsoft, focusing on principle propagation. He explained that this mechanism maps identities in external identity providers to SAP named backend users, which is crucial for apps on Azure and M365.
  • Use of Templates: Martin highlighted the use of templates published on SAP’s Business API Accelerator Hub and Azure services snippets. These templates simplify the process of setting up principle propagation, making it easier for customers to achieve robust and compliant backend access.
• Hack SAP in Two Hours Session:
• Michael Schmitt and Martin Pankraz described the “Hack SAP in Two Hours” session, which involves a red team/blue team exercise to demonstrate the integration of SAP Enterprise Threat Detection with Microsoft Sentinel.
  • Session Overview: Michael Schmitt and Martin Pankraz described the “Hack SAP in Two Hours” session, which involves a red team/blue team exercise. The session demonstrates the integration of SAP Enterprise Threat Detection (ETD) with Microsoft Sentinel, showing how to detect and counteract security threats.
  • Red Team/Blue Team Exercise: The exercise includes a scenario where participants will learn how to bypass multi-factor authentication prompts and compromise single sign-on. The session will then show how ETD and Sentinel can detect and respond to these threats.
  • Technical Insights: Michael explained that the session will cover specific alerts generated by ETD in response to the hack, such as alerts from foreign IP addresses and suspicious function module calls. Participants will also learn how to customize workflows to send notifications to the Security Operations Center (SoC) team via Microsoft Teams.
• Getting Started with Copilot Studio and SAP: Holger explained the session on using Copilot Studio with SAP, demonstrating how to create a copilot that interacts with SAP systems to look up and update product information.
• Autonomous Agent Integration with SAP:
• Holger described the session on creating an autonomous agent that is triggered by events in SAP systems, showcasing the power of low-code interaction with SAP systems from Copilot Studio.
• Conclusion and Acknowledgements:
• Holger concluded the meeting by thanking the contributors and highlighting the importance of the sessions. He encouraged participants to explore the GitHub repository for more information and to provide feedback.

• DSAG TechXChange 2025 - Microsoft track
• DSAG TechXChange 2025

• 0:00 Intro
• 1:30 Introducing the session owners, Michael^2 and Michael
• 4:35 DSAG TechXChange 2025
• 7:20 Lab - Deploy first SAP IDM scenario to Microsoft Entra ID
• 14:40 Lab - Secure SAP app integration with Microsoft
• 17:40 Lab - Hack SAP in 2 hours - SAP ETD joins Sentinel
• 24:20 Lab - Copilot Studio & SAP Getting Started
• 26:10 Lab - Copilot Studio & SAP Building Autonomous Agents