Scheer
Scheer
en
Contact
+49 681 96777-0
info@scheer-group.com
Contact Form
Newsletter

Menu

Contact

Language

Knowledge
Home  –  Solutions  –  Managed Services
  • Use Case

    Use Case

    On-demand standby operation for legacy SAP systems

    How to ensure secure and cost-effective retention of legacy SAP systems after migration

    1. Starting point

    After completing their cloud migration, many companies face a critical dilemma: What should be done with legacy SAP systems that, for regulatory or business-critical reasons, cannot simply be shut down?

    This creates a tension between several common challenges:

    • Regulatory compliance: Requirements such as GDPR demand not only the storage of data but also access to functioning systems for audits and data verification.
    • Technical risks: Outdated hardware and unsupported software introduce security vulnerabilities and make stable operation difficult. These risks grow over time, the longer these systems remain in use.
    • High costs: Ongoing operation ties up resources, generates hidden IT expenses, and increases operational risk. Costs rise steadily over the systems' lifespans.

    2. Objective

    The aim is to keep legacy systems operational, secure, and compliant while making them available with minimal effort - without having to maintain costly legacy infrastructures on an ongoing basis. In this regard, the Retention Box for SAP legacy systems with virtualized standby operation has proven highly effective.

    With the Retention Box, complete SAP legacy systems can be virtualized in a specially hardened Azure cloud environment. This enables a controlled, documented, and cost-efficient standby operation of SAP legacy systems in Microsoft Azure. The approach is structured, standardized, and flexibly scalable.

    The solution consists of the following components:

    • Technical isolation (via Bastion Host and VPN)
    • Custom hardening and access controls
    • Audit-proof logging and compliance documentation
    • Standby mode: The system remains offline but can be securely reactivated on demand (e.g., for audits)

    3. Our proven approach

    • Phase 1: Initial setup
      • Migration of the SAP legacy environment into a virtualized, dedicated Azure zone
      • Joint definition of security measures (e.g., firewall rules, user rights, logging)
      • Technical hardening of the system according to current security standards
      • Setup of an isolated access model with Bastion Host, VNET, and site-to-site VPN
      • Verification of all permissions and interfaces to minimize attack and manipulation risks
      • System testing and quality assurance in close collaboration with the customer
      • Release and handover into standby mode – operationally ready, but inactive and cost-optimized
    • Phase 2: Activation / On-demand online operation
      • Controlled system startup from standby mode, for example during audits or data queries
      • Application testing and functionality checks to ensure operational readiness
      • Verification of VPN connection and network security
      • Coordination with the customer regarding planned duration and type of use
      • Logged access with temporary authorization according to the defined security concept
    • Phase 3: Return to standby (e.g., after an audit)
      • Orderly shutdown of all system-relevant services and applications
      • Transition of the environment back into standby mode
      • Documentation of the process and customer notification of the restored standby status
    Infographic: Technical process

    4. Key benefits at a glance

    • Audit-proof access to legacy data when needed
    • Reduction of ongoing infrastructure costs by up to 80%
    • Relief of IT resources through a maintenance-free cloud environment
    • Isolated, secure operating environment aligned with the latest security standards

    5. Summary

    Free both your IT budget and your employees from the burden of outdated legacy systems by transferring their operation into the Scheer Retention Box for SAP legacy systems. Not only will you reclaim valuable resources that can be put to better use on current priorities, but you’ll also establish a state-of-the-art security environment for an aging system - without losing critical access to your data. The Scheer Retention Box ensures the continued operation of SAP legacy systems for the full duration of legal and regulatory retention periods - securely, predictably, and cost-efficiently.

    Your expert

    A profile of Scheer employee Martin Rosahl

    Martin Rosahl

    Managed Services

    Scheer

    Information

    Company

    Video platform on-demand

    Connect

    Select language

    English

    © 2026 Scheer GmbH