SAP Integration Suite, AI, MCP and Sentinel

Introduction

In episode 285 of our SAP on Azure video podcast we talk about SAP Integration Suite.

In the past we already talked about the SAP Integration Suite, Edge Integration Cell and also Microsoft Sentinel for security. Today, with my colleage Martin Pankraz and Jannis Maier from SAP, we take a closer look how these components work together.

Find all the links mentioned here: https://www.saponazurepodcast.de/episode285

Reach out to us for any feedback / questions:

• Goran Condric: https://www.linkedin.com/in/gorancondric/
• Holger Bruchelt: https://www.linkedin.com/in/holger-bruchelt/

#Microsoft #SAP #Azure #SAPonAzure #Integration #IntegrationSuite #Security #Sentinel #EdgeIntegrationCell

Summary created by AI

• Overview of SAP Integration Suite:
• Jannis provided an in-depth overview of the SAP Integration Suite, highlighting its broad capabilities for integrating SAP and third-party applications, including Microsoft, and emphasizing features such as pre-packaged integration content, API management, event-driven patterns, and support for B2B and government data exchange.
  • Integration Suite Capabilities: Jannis explained that SAP Integration Suite is an integration platform as a service, supporting various integration styles and patterns, including SAP and third-party applications, with over 250 connectors and growing. The suite offers pre-packaged integration content via the Business Accelerator Hub, which helps customers accelerate integration processes without starting from scratch.
  • B2B and Government Integration: Jannis described how the suite supports B2B trading partner management with multiple data formats (e.g., EDIFACT, ANSI X12) and enables data exchange with governments for regulatory compliance, such as invoice reporting.
  • API Management and Event-Driven Integration: Jannis outlined the suite’s API management capabilities for governing and securing APIs, as well as event-driven integration using advanced event mesh, supporting both SAP and third-party applications, including Microsoft Azure.
  • Migration and Modernization: Jannis discussed tools for migrating from legacy platforms (like PIPO) to Integration Suite, including automated migration tools and support for modernization as customers consolidate middleware platforms.
• Pre-Packaged Content and Microsoft Integration:
• Martin and Holger discussed the value of pre-packaged integration content available in the Business Accelerator Hub, focusing on Microsoft-related connectors and solutions, such as Microsoft Sentinel for SAP, and highlighted co-developed policy templates for secure integration.
  • Business Accelerator Hub: Martin described how the Business Accelerator Hub provides a wide range of pre-packaged integration content, including connectors for Microsoft products like Office, Dynamics, and specialized solutions such as Microsoft Sentinel for SAP, enabling customers to quickly implement integrations.
  • Policy Templates for Security: Martin highlighted co-developed policy templates for SAP API Management, such as principal propagation with Microsoft Entra ID, which facilitate secure single sign-on and integration between SAP and Microsoft ecosystems, including SuccessFactors and S/4HANA.
  • Customer-Driven Co-Engineering: Martin emphasized that the integration solutions and connectors are developed based on customer demand and co-engineering efforts between SAP and Microsoft, ensuring that the offerings address real-world modernization and security needs.
• AI Enablement and Integration Suite Roadmap:
• Jannis and Martin detailed the SAP Integration Suite’s AI enablement strategy, including upcoming features like the MCP Gateway, agent orchestration, and AI Gateway, as well as current AI-powered tools for developer productivity and operational excellence.
  • AI as Integration Enabler: Jannis explained that Integration Suite enables AI by orchestrating agents, exposing APIs via the MCP protocol, and providing features like grounding, prompt templates, data masking, and agent identity verification, with the MCP Gateway feature planned for release at the end of Q2.
  • AI for Integration Suite: Jannis described AI-powered features within Integration Suite, such as anomaly detection, API traffic prediction, script optimization, iFlow generation, and an AI-based configuration agent, all aimed at boosting developer productivity and simplifying operations.
  • Microsoft Collaboration on AI Integration: Martin noted that Microsoft benefits from these AI features when building pre-packaged content and highlighted the reuse of policy templates for agent integration, with both companies working together to accelerate customer onboarding and integration scenarios.
• MCP Gateway and Agent Integration Demo:
• Jannis demonstrated the upcoming MCP Gateway feature, showing how APIs can be exposed to AI agents with fine-grained policy controls, and walked through a supplier risk assessment scenario using agentic AI to select optimal suppliers based on risk and location.
  • MCP Gateway Feature Overview: Jannis presented the MCP Gateway, which allows users to expose APIs to agents via the MCP protocol with a simple checkbox in the Integration Suite, enabling traffic management, security, and routing for both SAP and third-party systems.
  • Policy and Quota Management: Jannis showed how administrators can define authentication, authorization, surge protection, and quota policies for APIs exposed via MCP, including monetization and cross-charging features for different lines of business.
  • Fine-Grained API Exposure: Jannis explained that only specific API resources or tools can be exposed to agents, with the ability to add descriptions and prompt templates to make APIs more LLM-friendly and restrict agent access as needed.
  • Supplier Risk Assessment Scenario: Jannis demonstrated a real-life scenario where an AI agent uses the MCP-exposed API to select the most reliable supplier for a material, considering risk analytics and proximity to Berlin, and showed the approval and execution flow from the agent’s perspective.
• Edge Integration Cell: Hybrid Integration Runtime:
• Jannis and Martin discussed the Edge Integration Cell as a hybrid runtime option for SAP Integration Suite, detailing its use cases for on-premise and private cloud deployments, technical prerequisites, and compatibility with Microsoft Azure and AKS.
  • Edge Integration Cell Overview: Jannis described Edge Integration Cell as an optional runtime for customers needing to process data on-premise or in private clouds due to compliance or security requirements, with support for Kubernetes platforms like Microsoft AKS and databases such as Postgres and HANA.
  • Deployment and Compatibility: Jannis explained that integration flows (iFlows) are compatible across cloud and edge runtimes, with some adapters and features unique to Edge Integration Cell, and highlighted the ability to connect multiple edge runtimes to a single Integration Suite tenant.
  • Microsoft Collaboration and Managed Service: Jannis and Martin mentioned ongoing collaboration with Microsoft, including learning courses and an upcoming managed service option for Edge Integration Cell within Rise on Azure, which will simplify deployment and maintenance for customers.
• Accelerators and Infrastructure Automation:
• Martin introduced the SAP Edge Integration Cell on Azure Accelerator, a community-driven repository with Terraform and Bicep scripts to automate infrastructure deployment, and discussed plans for further automation and learning resources.
  • Infrastructure as Code: Martin described the accelerator repository, which provides Terraform and Bicep scripts for automating the deployment of SAP Edge Integration Cell on Azure Kubernetes Service, supporting both hybrid and on-premises scenarios.
  • Community and Learning Resources: Martin highlighted collaboration with Sebastian Meyer and the Azure MVP community, ongoing development of learning courses, and the use of Copilot to further automate infrastructure setup, encouraging feedback and engagement from users.

• 0:00 Intro
• 1:10 Introducing Jannis Maier & Martin Pankraz
• 4:20 SAP Integration Suite
• 12:00 SAP API Business Accelerator Hub
• 14:40 Becoming the Trusted AI Integation Fabric
• 20:00 "Governed" Agent-to-Ssytem integration (MCP)
• 22:00 Supplier Risk Assessment using agentic AI
• 22:45 Demo - MCP Server in Integration Suite
• 32:00 Edge Integration Cell
• 38:50 Demo - Prepackaged Content in Integration Suite
• 40:45 SAP Edge Integration Call on Azure Accelerator