Technology Blogs by SAP
Learn how to extend and personalize SAP applications. Follow the SAP technology blog for insights into SAP BTP, ABAP, SAP Analytics Cloud, SAP HANA, and more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Assigning Design Time Roles to a Database User in SAP HANA Cloud

former_member543496
Explorer
‎11-02-2020 7:53 AM

Introduction:


This blog post will take you through the different steps required to assign design time HDI role created in SAP Web IDE or Business Application Studio to SAP HANA database users.

Steps to Assign the HDI Role:


Below are the privilege's required and steps for granting the HDI role



  1. With ROLE ADMIN system privilege, you can grant any role.

  2. Catalog role created in runtime using SQL, you need to have the role being granted yourself and be authorized to grant it to other users and roles.

  3. HDI role, that is a schema-specific role created using the SAP Web IDE and deployed using SAP HANA deployment infrastructure, you need privileges to execute GRANT_CONTAINER_SCHEMA_ROLES in the container's API schema.


Below are the required steps

  1. Navigate to SAP HANA Cloud form SAP Cloud Platform and open the SAP HANA Cockpit.

  2. On the Database Overview page of SAP HANA Cockpit, Select the Security and User Management

  3. Open the User management under User & Role Management

  4. Search for your user using which role has to be assigned to check if it has the required privilege's to assign the HDI role. Scroll below and click on  Assign Privilege's.

  5. Click on Add in edit mode to assign the role admin privilege in case it is not assigned.

  6. Now go back again to User management  and select the user to which HDI role has to be assigned. Click on  Assign Roles, then click on edit and add the HDI role generated using SAP Web IDEIn my case , generated HDI role was admin form SAP Web IDE

  7. Alternatively , The same can be done through Role Assignment under User & Role Management in cockpit. Search for your user to which HDI generated role has to be assigned. Click on Edit and Add


 

Conclusion:


In case you have both authorization the GRANT_CONTAINER_SCHEMA_ROLES procedure and the system privilege ROLE ADMIN, you can choose which granting mechanism to use when granting a HDI role. I have assigned the admin role generated from SAP Web IDE to a user User1 from DBAMIN default cockpit user. You can also use the SQL command to do the same

Grant "<schema-name>"."<role-name>" to <user>
2 Comments
Labels in this area
Popular Blog Posts