I would not rely on lack of chatter here. SAP world is special. Sadly, it's still common to think that SAP security == authorization. But it's getting better. People started asking questions about weak cipher suits. Actually, I guess that there might be some open source tool already published that allows you to test your servers. I would try it against SAP systems and see how it goes.
BTW what is ADS?
Cheers