- SAP Community
- Products and Technology
- Technology
- Technology Blogs by Members
- Users and Roles available in SAP HANA
Technology Blogs by Members
Explore a vibrant mix of technical expertise, industry insights, and tech buzz in member blogs covering SAP products, technology, and events. Get in the mix!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
vivekbhoj
Active Contributor
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
06-21-2013
4:57 AM
Hi Everyone,
In this document, i will tell you about the USERS and ROLES available in SAP HANA by default
Lets start with OS Level Users available in HANA :
In SAP HANA, two OS Users are available :
1. root - superuser in any Unix/Linux based system
2. [SID]adm - here SID stands for System ID
Suppose if our System has ID as RC5 then our user will be RC5adm
Both these users are protected using SLES Authentication method( PAM ) and hashed passwords.
Here SLES stands for Suse Linux Enterprise Server and PAM stands for Pluggable Authentication Modules.
To know more about these visit : http://wiki.novell.com/index.php/SUSE_Manager/Authentication
OS authenticaion allows HANA to pass control of user authentication to the Operating System.
When we try to connect to our HANA server we pass the OS Username and password and if the OS Username is recognized and the OS Username and password are correct, we are able to connect to the HANA database Server otherwise the connection is rejected.
It is recommended to disable direct root access and use sudo command for root level access
sudo command allows a permitted user to execute a command as the superuser or another user, as specified in the /etc/sudoers file.
sudo determines who is an authorized user by referring to the /etc/sudoers file.
To learn more about Linux and its commands visit http://www.linux.org/ or http://linux.about.com/
[SID]adm user has rwx permissions to Grouped and Owned
rwx - stands for read write and execute
It has ownership and group membership on file systems, files and execution environments of :
a. SAP HANA
b. SAP Sybase Replication Server and Components
c. SAP Load Controller
d. SAP Host Agent
Groups - dba, sapsys and sapadm
OS Users password are stored in files /etc/passwd and /etc/shadow
To know more about Users and Groups visit : https://wiki.archlinux.org/index.php/Users_and_Groups
For knowing how SAP is installed using SUSE Linux, visit : https://www.suse.com/documentation/sles_for_sap/singlehtml/sles_for_sap_guide/sles_for_sap_guide.htm...
To know more about SAP on SUSE Linux visit : http://www.novell.com/docrep/2011/04/sap_on_sles11_simple_stack.pdf
Now lets move on to Users available in Sybase Replication Server :
1. sa - Superuser for Replication Server and Replication Agent
2. [RS ServerName]HANARS1_RSSD_prim - User for Replcation Server's eRSSD
eRSSD - stands for Embedded Replication Server System Database
3. For ECDA, we have to use HANA's Administrative User SYSTEM
ECDA - stands for Enterprise Connect Data Access
To learn more about eRSSD visit :
http://www.sybase.in/sb_content/1027266/ERSSD_wp.pdf or http://infocenter.sybase.com/help/topic/com.sybase.help.rs_15.0.whatsnew/pdf/whatsnew.pdf
to learn more about ECDA visit :
http://infocenter.sybase.com/help/topic/com.sybase.infocenter.dc32753.1550/pdf/rso_overview.pdf
For SAP HANA Load Controller and SAP HANA Host Agent, we need access to :
[SID]adm User - it acts both as a OS User and Application Administrative User
SAP Host Agent handles the login authentication between source system and target system.
SAP Load Controller starts the initial load of source system data to the SAP HANA database in SAP HANA, and communicates with the Sybase Replication Server to coordinate the start of the delta replication.
To learn more about SPA HANA Load Controller visit : http://help.sap.com/businessobject/product_guides/HAN01SP4/en/hana_sps4_master_en.pdf
Now lets move on to Users available in SAP HANA Studio :
SYSTEM - superuser or Administrator of SAP HANA
It has access to all privileges present in SAP HANA.
It is used to create Users for specific tasks such as :
a. System Administrative tasks( e.g.: operate and maintain the ICE and users using HANA Studio )
b. Modeling tasks( e.g.: Create Models and reports using HANA Studio )
c. End User Tasks ( e.g.: Consuming reports using Client tools like Excel )
d. Power User Tasks( e.g.: Need to work on few Administrative and few Modeling tasks )
e. Replication Tasks( e.g.: to perform Data Replication from Source ERP System to HANA System )
Finally lets move onto Roles available in SAP HANA :
First let me explain what is role?
A Role is nothing but a collection of privileges.
Role can be either assigned to a User or to another Role.
They are reusable objects.
What is Privilege?
A privilege is used to impose restrictions on operations( such as INSERT, SELECT, DELETE ) carried out on certain objects( such as TABLE, VIEWS, SCHEMA )
Following are the predelivered roles available in SAP HANA Studio :
1. PUBLIC - This role has the minimum privileges required to work with a database and this role is granted implicitly whenever a user is granted
2. MODELER : This role has a lots of privileges and it enables a user to :
a. Create and activate Information Models
b. Create and activate Analytic Privileges
3. MONITORING : This role has full read only access to all metadata, monitoring and statistics.
4. CONTENT_ADMIN : This role has most vital privileges. It has :
a. SQL Privileges on Schema _SYS_BIC with GRANT OPTION
b. SQL Privileges on Schema _SYS_BI with GRANT OPTION
To learn more about HANA User Administration, please visit : http://help.sap.com/hana/hana_admin_en.pdf
There are couple of predefined roles for Information Composer also :
But first let me tell you what is SAP HANA Information Composer?
SAP HANA Information Composer is a Web application that allows you to upload and manipulate data on the SAP HANA database.
It uses the SAP NetWeaver Core Engine for Partners 1.0 (LJS 1.0), which interacts with the SAP HANA database.
The LJS 1.0 communicates with the SAP HANA Information Composer client via HTTP or HTTPS. The following ports are used by default:
HTTP port 8080
HTTPS port 8443
If HTTPS is used, the SSL certification must be configured by the administrator.
LJS - stands for Lean Java Server( the actual Server in Netweaver Cloud )
Available roles for Information Composer are :
5. IC_PUBLIC : This role allows a User to see the shared physical tables and calculation views.
6. IC_MODELER : This role allows a User to upload new content in the SAP HANA Databse and to create physical tables and calculation views.
To learn more about Information Composer visit : http://help.sap.com/hana/H1_SP3_info_comp_en.pdf
Thanks for reading my document.
This is my first document so any feedback will be appreciated by me.
- SAP Managed Tags:
- SAP HANA
5 Comments
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Labels in this area
-
"automatische backups"
1 -
"regelmäßige sicherung"
1 -
505 Technology Updates 53
1 -
ABAP
14 -
ABAP CDS Views
1 -
ABAP CDS Views - BW Extraction
1 -
ABAP CDS Views - CDC (Change Data Capture)
1 -
ABAP Cloud
2 -
ABAP Development
4 -
ABAP Platform Trial
1 -
ABAP Programming
2 -
access data from SAP Datasphere directly from Snowflake
1 -
Access data from SAP datasphere to Qliksense
1 -
Accrual
1 -
action
1 -
adapter modules
1 -
Addon
1 -
Adobe Document Services
1 -
ADS
1 -
ADS Config
1 -
ADS with ABAP
1 -
ADS with Java
1 -
ADT
1 -
Advance Shipping and Receiving
1 -
Advanced Event Mesh
3 -
AEM
1 -
AI
6 -
AI Launchpad
1 -
AI Projects
1 -
AIML
9 -
Alert in Sap analytical cloud
1 -
Amazon S3
1 -
Analytical Dataset
1 -
Analytical Model
1 -
Analytics
1 -
Analyze Workload Data
1 -
annotations
1 -
API
1 -
API and Integration
3 -
API Call
1 -
Application Architecture
1 -
Application Development
5 -
Application Development for SAP HANA Cloud
3 -
Applications and Business Processes (AP)
1 -
Artificial Intelligence
1 -
Artificial Intelligence (AI)
4 -
Artificial Intelligence (AI) 1 Business Trends 363 Business Trends 8 Digital Transformation with Cloud ERP (DT) 1 Event Information 462 Event Information 15 Expert Insights 114 Expert Insights 76 Life at SAP 418 Life at SAP 1 Product Updates 4
1 -
Artificial Intelligence (AI) blockchain Data & Analytics
1 -
Artificial Intelligence (AI) blockchain Data & Analytics Intelligent Enterprise
1 -
Artificial Intelligence (AI) blockchain Data & Analytics Intelligent Enterprise Oil Gas IoT Exploration Production
1 -
Artificial Intelligence (AI) blockchain Data & Analytics Intelligent Enterprise sustainability responsibility esg social compliance cybersecurity risk
1 -
ASE
1 -
ASR
2 -
ASUG
1 -
Attachments
1 -
Authorisations
1 -
Automating Processes
1 -
Automation
1 -
aws
2 -
Azure AI Studio
1 -
B2B Integration
1 -
Backorder Processing
1 -
Backup
1 -
Backup and Recovery
1 -
Backup schedule
1 -
BADI_MATERIAL_CHECK error message
1 -
Bank
1 -
basis
2 -
Basis Monitoring & Tcodes with Key notes
2 -
Batch Management
1 -
Best Practice
1 -
bitcoin
1 -
Blockchain
3 -
BOP in aATP
1 -
BOP Segments
1 -
BOP Strategies
1 -
BOP Variant
1 -
BPC
1 -
BPC LIVE
1 -
BTP
10 -
BTP Destination
2 -
Business AI
1 -
Business and IT Integration
1 -
Business application stu
1 -
Business Architecture
1 -
Business Communication Services
1 -
Business Continuity
1 -
Business Data Fabric
3 -
Business Partner
12 -
Business Partner Master Data
10 -
Business Technology Platform
2 -
Business Trends
1 -
CA
1 -
calculation view
1 -
CAP
2 -
Capgemini
1 -
Catalyst for Efficiency: Revolutionizing SAP Integration Suite with Artificial Intelligence (AI) and
1 -
CCMS
2 -
CDQ
12 -
CDS
2 -
Cental Finance
1 -
Certificates
1 -
CFL
1 -
Change Management
1 -
chatbot
1 -
ChatGPT
2 -
CL_SALV_TABLE
2 -
Cloud ALM Monitoring
1 -
Cloud ALM Operations
1 -
Cloud Extensibility
1 -
Cloud Foundry
3 -
Cloud Integration
6 -
Cloud Platform Integration
2 -
cloudalm
1 -
communication
1 -
Compensation Information Management
1 -
Compensation Management
1 -
Compliance
1 -
Compound Employee API
1 -
Configuration
1 -
Connectors
1 -
Conversion
1 -
Cosine similarity
1 -
cryptocurrency
1 -
CSI
1 -
ctms
1 -
Custom chatbot
3 -
custom fields
1 -
Customer Experience
1 -
Customer Journey
1 -
Customizing
1 -
Cyber Security
2 -
Data
1 -
Data & Analytics
1 -
Data Aging
1 -
Data Analytics
2 -
Data and Analytics (DA)
1 -
Data Archiving
1 -
Data Back-up
1 -
Data Governance
5 -
Data Integration
2 -
Data Quality
12 -
Data Quality Management
12 -
Data Synchronization
1 -
data transfer
1 -
Data Unleashed
1 -
Data Value
8 -
database tables
1 -
Datasphere
2 -
datenbanksicherung
1 -
dba cockpit
1 -
dbacockpit
1 -
Debugging
2 -
Delimiting Pay Components
1 -
Delta Integrations
1 -
Destination
2 -
Developer extensibility
1 -
Developing with SAP Integration Suite
1 -
Devops
1 -
Digital Transformation
1 -
Documentation
1 -
Dot Product
1 -
DQM
1 -
dump database
1 -
dump transaction
1 -
e-Invoice
1 -
E4H Conversion
1 -
edoc
1 -
edocument
1 -
ELA
1 -
Embedded Consolidation
1 -
Embedding
1 -
Embeddings
1 -
Employee Central
1 -
Employee Central Payroll
1 -
Employee Central Time Off
1 -
Employee Information
1 -
Employee Rehires
1 -
Enhancement Request
1 -
Enterprise Architecture
1 -
ETL Business Analytics with SAP Signavio
1 -
Euclidean distance
1 -
Event Dates
1 -
Event Driven Architecture
1 -
Event Mesh
2 -
Event Reason
1 -
EventBasedIntegration
1 -
EWM
1 -
EWM Outbound configuration
1 -
EWM-TM-Integration
1 -
Existing Event Changes
1 -
Expand
1 -
Expert
1 -
Expert Insights
1 -
Fiori
14 -
Fiori Elements
2 -
Fiori SAPUI5
12 -
Flask
1 -
Full Stack
8 -
Funds Management
1 -
Generative AI
1 -
GitHub
8 -
Grants Management
1 -
groovy
1 -
GTP
1 -
HANA
5 -
HANA Cloud
2 -
Hana Cloud Database Integration
2 -
HANA DB
1 -
HANA XS Advanced
1 -
Historical Events
1 -
home labs
1 -
HowTo
1 -
HR Data Management
1 -
html5
8 -
idm
1 -
Implementation
1 -
input parameter
1 -
instant payments
1 -
Integration
2 -
Integration Advisor
1 -
Integration Architecture
1 -
Integration Center
1 -
Integration Suite
1 -
intelligent enterprise
1 -
Java
1 -
job
1 -
Job Information Changes
1 -
Job-Related Events
1 -
Job_Event_Information
1 -
joule
4 -
Journal Entries
1 -
Just Ask
1 -
Kerberos for ABAP
8 -
Kerberos for JAVA
8 -
Launch Wizard
1 -
Learning Content
2 -
Life at SAP
1 -
lightning
1 -
Linear Regression SAP HANA Cloud
1 -
local tax regulations
1 -
LP
1 -
Machine Learning
2 -
Marketing
1 -
Master Data
3 -
Master Data Management
14 -
Maxdb
2 -
MDG
1 -
MDGM
1 -
MDM
1 -
Message box.
1 -
Messages on RF Device
1 -
Microservices Architecture
1 -
Middleware Solutions
1 -
Migration
5 -
ML Model Development
1 -
Modeling in SAP HANA Cloud
8 -
Monitoring
3 -
MTA
1 -
Multi-Record Scenarios
1 -
Multiple Event Triggers
1 -
Neo
1 -
New Event Creation
1 -
New Feature
1 -
NodeJS
1 -
ODATA
1 -
OData APIs
1 -
odatav2
1 -
ODBC
1 -
ODBC Connection
1 -
open source
2 -
OpenAI API
1 -
Oracle
1 -
PaPM
1 -
PaPM Dynamic Data Copy through Writer function
1 -
PaPM Remote Call
1 -
PAS-C01
1 -
Pay Component Management
1 -
PGP
1 -
Pickle
1 -
PLANNING ARCHITECTURE
1 -
Popup in Sap analytical cloud
1 -
PostgrSQL
1 -
POSTMAN
1 -
Process Automation
2 -
Product Updates
4 -
PSM
1 -
Public Cloud
1 -
Python
3 -
Qlik
1 -
Qualtrics
1 -
RAP
3 -
RAP BO
2 -
Record Deletion
1 -
Recovery
1 -
recurring payments
1 -
redeply
1 -
Release
1 -
Remote Consumption Model
1 -
Replication Flows
1 -
Resilience
1 -
REST
1 -
REST API
1 -
Retagging Required
1 -
Risk
1 -
Rolling Kernel Switch
1 -
route
1 -
rules
1 -
S4 HANA
1 -
S4 HANA Cloud
1 -
S4 HANA On-Premise
1 -
S4HANA
3 -
S4HANA_OP_2023
2 -
SAC
10 -
SAC PLANNING
9 -
SAP
3 -
SAP ABAP
1 -
SAP Advanced Event Mesh
1 -
SAP AI Core
8 -
SAP AI Launchpad
8 -
SAP Analytic Cloud Compass
1 -
Sap Analytical Cloud
1 -
SAP Analytics Cloud
4 -
SAP Analytics Cloud for Consolidation
1 -
SAP Analytics Cloud Story
1 -
SAP analytics clouds
1 -
SAP BAS
1 -
SAP Basis
6 -
SAP BODS
1 -
SAP BODS certification.
1 -
SAP BTP
20 -
SAP BTP Build Work Zone
2 -
SAP BTP Cloud Foundry
5 -
SAP BTP Costing
1 -
SAP BTP CTMS
1 -
SAP BTP Innovation
1 -
SAP BTP Migration Tool
1 -
SAP BTP SDK IOS
1 -
SAP Build
11 -
SAP Build App
1 -
SAP Build apps
1 -
SAP Build CodeJam
1 -
SAP Build Process Automation
3 -
SAP Build work zone
10 -
SAP Business Objects Platform
1 -
SAP Business Technology
2 -
SAP Business Technology Platform (XP)
1 -
sap bw
1 -
SAP CAP
1 -
SAP CDC
1 -
SAP CDP
1 -
SAP Certification
1 -
SAP Cloud ALM
4 -
SAP Cloud Integration for Data Services
1 -
SAP cloud platform
8 -
SAP CPI
3 -
SAP CPI (Cloud Platform Integration)
2 -
SAP CPI Discover tab
1 -
sap credential store
1 -
SAP Customer Data Cloud
1 -
SAP Customer Data Platform
1 -
SAP Data Intelligence
1 -
SAP Data Services
1 -
SAP DATABASE
1 -
SAP Dataspher to Non SAP BI tools
1 -
SAP Datasphere
8 -
SAP DRC
1 -
SAP EWM
1 -
SAP Fiori
1 -
SAP Fiori App Embedding
1 -
Sap Fiori Extension Project Using BAS
1 -
SAP GRC
1 -
SAP HCM (Human Capital Management)
1 -
SAP HR Solutions
1 -
SAP IDM
1 -
SAP Integration Suite
9 -
SAP Integrations
4 -
SAP iRPA
2 -
SAP Learning Class
1 -
SAP Learning Hub
1 -
SAP Odata
2 -
SAP PartnerEdge
1 -
sap partners
1 -
SAP Password Reset
1 -
SAP PO Migration
1 -
SAP Prepackaged Content
1 -
SAP Process Automation
2 -
SAP Process Integration
2 -
SAP Process Orchestration
1 -
SAP S4HANA
2 -
SAP S4HANA Cloud
1 -
SAP S4HANA Cloud for Finance
1 -
SAP S4HANA Cloud private edition
1 -
SAP Sandbox
1 -
SAP STMS
1 -
SAP SuccessFactors
2 -
SAP SuccessFactors HXM Core
1 -
SAP Time
1 -
SAP TM
2 -
SAP Trading Partner Management
1 -
SAP UI5
1 -
SAP Upgrade
1 -
SAP-GUI
8 -
SAPBTP
1 -
SAPCPI
1 -
SAPEWM
1 -
sapmentors
1 -
saponaws
1 -
SAPUI5
4 -
schedule
1 -
Secure Login Client Setup
8 -
security
9 -
Selenium Testing
1 -
SET_CELL_TYPE
1 -
SET_CELL_TYPE_COLUMN
1 -
SFTP scenario
2 -
Simplex
1 -
Single Sign On
8 -
Singlesource
1 -
SKLearn
1 -
Software Development
1 -
SOLMAN
1 -
solman 7.2
2 -
Solution Manager
3 -
sp_dumpdb
1 -
sp_dumptrans
1 -
sql script
1 -
SSL
8 -
SSO
8 -
SuccessFactors
1 -
SuccessFactors Time Tracking
1 -
Sybase
1 -
system copy method
1 -
System owner
1 -
Table splitting
1 -
Tax Integration
1 -
Technical article
1 -
Technical articles
1 -
Technology Updates
1 -
Technology Updates
1 -
Technology_Updates
1 -
Threats
1 -
Time Collectors
1 -
Time Off
2 -
Tips and tricks
2 -
Tools
1 -
Trainings & Certifications
1 -
Transport in SAP BODS
1 -
Transport Management
1 -
TypeScript
1 -
unbind
1 -
Unified Customer Profile
1 -
UPB
1 -
Use of Parameters for Data Copy in PaPM
1 -
User Unlock
1 -
VA02
1 -
Vector Database
1 -
Vector Engine
1 -
Visual Studio Code
1 -
VSCode
1 -
Web SDK
1 -
work zone
1 -
workload
1 -
xsa
1 -
XSA Refresh
1
- « Previous
- Next »
Related Content
- How to create a discount amount / percentage in PO? in Technology Q&A
- Can a user log on to the BTP Build Workzone (standard edition) with UN + PW instead of SSO? in Technology Q&A
- Bind App to hdi-container with specific role or read-only privilege (cloud foundry) in Technology Q&A
- Access Request Completion on Wrong System in Technology Q&A
- Deep dive into Q4 2023, What’s New in SAP Cloud ALM for Implementation Blog Series in Technology Blogs by SAP
Top kudoed authors
| User | Count |
|---|---|
| 9 | |
| 4 | |
| 4 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 3 |
