Symptom
You are installing SAP HANA ANALYTICS FOR PRA 1.0 and are needing
guidance on setting up authorizations specific to the PRA VDM Content
Other Terms
HANA Live PRA
Reason and Prerequisites
SAP HANA ANALYTICS FOR PRA 1.0 is installed and you are in the process of establishing authorizations for your business users
Solution
The user interfaces of SAP HANA Live for SAP
Business Suite rely on the access control mechanisms of the underlying
SAP HANA database. As a prerequisite, it is assumed that every business
user (any user accessing SAP HANA Live content in the SAP HANA database)
is created as a named SAP HANA database user. To control the business
user’s access to SAP HANA Live application content and displayed data,
the relevant authorization settings have to be configured within the SAP
HANA database.
Authorization settings on the SAP HANA database are achieved through privileges.
Refer to the online reference material "SAP
HANA Live for SAP Business Suite Administrator's Guide -> Security"
for details on the general administration of security within HANA Live.
The PRA components of HANA Live follow the
general characteristics and setup requirements defined in the above
document. It is worth noting however that not all PRA views have
corresponding analytic privilege elements defined in the back-end system
(IS-PRA), and therefore the SAP HANA Live Authorization Assistant
cannot be used to generate analytic privileges for those views. For
example, there exists no applicable attribute level authorization
object for well volume queries in IS-PRA in the ECC system, therefore
there is nothing for the Authorization Assistant to use as a mapping
basis. As access to a query view requires an analytic privilege to be
defined and assigned to a user, the administrator must take the manual
steps necessary to define an appropriate analytic privilege for those
views that cannot be otherwise generated by the SAP HANA Live
Authorization Assistant. These steps are performed as a standard SAP
HANA security administrator task, and can be referenced in the SAP HANA
Security Guide.
It is advisable for security administrators
to review all generated privileges, and refine as necessary to
accommodate the business requirements. The privileges model available
for SAP HANA Analytics is very flexible and allows for a more detailed
authorization scheme to be created than may be possible in the back-end
system.
Header Data
| Released On | 14.05.2015 16:54:38 |
| Release Status | Released for Customer |
| Component | IS-OIL-PRA-HBA HANA BASED ANALYTICS for PRA |
| Priority | Recommendations / Additional Info |
| Category | Installation information |
No comments:
Post a Comment