Users When the SAP HANA database software is installed, two users are created.
During the installation process you are prompted to define the passwords of the SYSTEM user and SYSTEM ADMINISTRATOR user.
SYSTEM ADMINISTRATOR
The System Administrator (<sid>adm) user is an operating system user. The System Administrator owns all files belonging to the SAP HANA system, and all processes run under this user. That is, the Linux privileges and file permissions fully apply to this user. This user has no privileges on database objects.
SYSTEM
The user SYSTEM is a database user, which has all system privileges, but is not allowed to see the data owned by other users. More privileges can be granted to or revoked from this user. However, its initial privileges cannot be revoked.
HANA User Authentication
To be able to log on to the system, users have to be authenticated.
Currently there are two authentication types:
Database-internal authentication with user name and password.
External authentication via a third-party authentication provider.
HANA User Internal Authentication
Users are created in SAP HANA database only
Authentication is handled by SAP HANA database via user name/password combination.
Authorization:
SAP HANA database provides its own authorization service:
All authorizations on data are handled in SAP HANA database.
The user with which you log on to the system determines which database objects you can access and modify.
Users can only perform operations for which they have been granted privileges.
Users can have the following types of privileges:
Privileges that were directly granted to them (“direct privileges”)
Privileges that were granted to roles that they belong to (“inherited privileges”)
During the installation process you are prompted to define the passwords of the SYSTEM user and SYSTEM ADMINISTRATOR user.
SYSTEM ADMINISTRATOR
The System Administrator (<sid>adm) user is an operating system user. The System Administrator owns all files belonging to the SAP HANA system, and all processes run under this user. That is, the Linux privileges and file permissions fully apply to this user. This user has no privileges on database objects.
SYSTEM
The user SYSTEM is a database user, which has all system privileges, but is not allowed to see the data owned by other users. More privileges can be granted to or revoked from this user. However, its initial privileges cannot be revoked.
HANA User Authentication
To be able to log on to the system, users have to be authenticated.
Currently there are two authentication types:
Database-internal authentication with user name and password.
External authentication via a third-party authentication provider.
HANA User Internal Authentication
Users are created in SAP HANA database only
Authentication is handled by SAP HANA database via user name/password combination.
Authorization:
SAP HANA database provides its own authorization service:
All authorizations on data are handled in SAP HANA database.
The user with which you log on to the system determines which database objects you can access and modify.
Users can only perform operations for which they have been granted privileges.
Users can have the following types of privileges:
Privileges that were directly granted to them (“direct privileges”)
Privileges that were granted to roles that they belong to (“inherited privileges”)
No comments:
Post a Comment