Skip to Content
Author's profile photo Former Member

SAP HANA Security – Create Roles and Privileges from BW System in SAP HANA

This blog post explains how to create roles with privileges for SAP HANA Studio from BW for DBMS profiles in order to give the users the possibilities to see views on generated SAP HANA BW content (like calculated views generated out of new composite provider and SAP BW queries 7.4).

Create SAP HANA Studio User via BW

First off, it is possible to create a SAP HANA User via BW System – Triggered in Transaction SU01 in tab DBMS to SAP HANA Studio.

Type in a DBMS User name and Password as well as choose and assign any already existing roles to the user profile. Through saving, the User will be created within SAP HANA Studio. After creation assigning new roles or changing password directly within BW is a further possibility.


Generating SAP HANA Authorizations via Transaction RS2HANA_ADMIN

Be aware the user needs authorization to open a query within BW on the same provider with the corresponding authorization-relevant info objects in order to have sufficient privileges in SAP HANA Studio.


Open up Transaction RS2HANA_ADMIN, go to “Consistency check tool” and go to Button “Generate SAP HANA Authorizations”.



Another possible way to generate SAP HANA Authorizations is to execute the report: RS2HANA_AUTH_RUN within SE38.


Both open up to the same screen.

Select one or more Info Providers the user would need reading/reporting access to and select one or more users who will get the authorization to this provider.

Start with “Simulation mode” for a quick check if generation will be without errors and afterwards with marking “Force generation”, generate the roles containing the necessary privileges which are needed for the selected SAP HANA Objects.

Afterwards a pop-up window shows the roles which were created and assigned to the chosen User profile.


When going back to transaction SU01 the newly created roles are already assigned within the DBMS tab for the selected users.


Furthermore you can check the created authorizations with content within Table RS2HANA_AUTH_STV.


Within this example the user has now the Roles with privileges on SAP HANA Studio for accessing the Composite Provider ZPTEX05 with authorization to Company Code 0001 as was his limitations within his authorization on BW system.

Because the user is only authorized to one Company Code he will get an authorization error when trying to access all data.


Selecting the user’s correct limitation from his newly generated privileges, data will be shown.


Assigned Tags

      You must be Logged on to comment or reply to a post.
      Author's profile photo Former Member
      Former Member

      Hi,Nina,thanks for you post.

      Can you tell me which BW patch level support the Function? My system is BW on HANA 740 SP6,no DBMS tab in SU01.

      Author's profile photo Former Member
      Former Member
      Blog Post Author

      hi Qui,

      sorry it took me so long. We started this with 7.4 SPS07.



      Author's profile photo Former Member
      Former Member

      Nina Ku

      I am also intrested to know the NW version details .I dint see this function till NW 7.4 SPS07.

      Author's profile photo Former Member
      Former Member