User Management & Security [Hands-On]

User & Role Management (Hands-On)

1. User Group Management

a. Creating User Groups (Example: ACloudGuruji_Admin_Group)

To create a user group and associate users with it, follow these steps:

SQL Command for Creating User Group:

CREATE USER <username> SET USERGROUP <usergroupname>;

SQL Command for Altering User's User Group:

ALTER USER <username> SET USERGROUP <usergroupname>;

2. User Management

a. Creating a User (Example: ACloudGurujiADMIN)

There are two types of users you can create: Standard Users and Restricted Users.

Standard User: (Provide description of a standard user)

Restricted User: (Provide description of a restricted user)

3. Role Management (Example: ACloudGuruji_ROLE)

In role management, you can define various privileges to control access to database objects and system functions.

a. Object Privilege (DB Objects - Tables, Views)

Define privileges related to database objects such as tables and views.

b. System Privilege (Admin Purposes - Create User, Roles)

Define privileges related to administrative tasks like creating users and roles.

c. Analytical Privilege (HANA Models - Analytical View, Attribute View, Calculation View)

Define privileges for accessing and manipulating HANA analytical models.

To manage roles effectively, follow these steps:

1. Create Role: Define a role based on your specific access requirements.

2. Add Privileges to the Role: Assign the necessary system and object privileges to the role. You can also copy privileges from the DBADMIN system role.

3. Assign Role to the User: Grant the role to the user(s) who need access to the specified privileges.

By following these steps, you can efficiently manage user groups, individual users, and roles with appropriate privileges, ensuring secure and controlled access to your database and system resources.