Entering content frame

Background documentation Security Measures for Database Standard Users Locate the document in its SAP Library structure

To protect the database standard users, you should:

·        Change the passwords of the standard users

·        Change the server authorizations for users

Changing the Passwords of the Standard Users

To protect the standard database system users, you should change their passwords.

You may also want to assign the authorization SECONDPASSWORD to define a second password for a user. In this way, you can allow other people temporary access to work with a user account without needing to reveal or change the original password.

Prerequisites

The database instance is in an operational state in which it is possible to change the password of the relevant user.

User

Name

Required Operational State

<DBM_user>

First Database Manager operator (DBM operator)

OFFLINE

<SYSDBA_user>

Database system administrator (SYSDBA user)

ONLINE

Procedure

Database Manager GUI: Changing a Database User Password

Database Manager CLI: Changing the DBM Operator Data

Changing the Server Authorizations for Users

We recommend that you assign the server authorizations individually to the users. In this way, you distribute the various administration tasks between several users and administrators.

Procedure

Database Manager GUI: Changing the Server Authorizations

Database Manager CLI: Changing the DBM Operator Data

Example

Changing the Database Manager operator (DBM operator)with the Database Manager CLI

Add the following server authorization for the DBM operator DBM: Start database instance

Delete the following server authorization for the DBM operator DBM: Stop database instance

user_put DBM SERVERRIGHTS=+StartDB, -StopDB

 

 

Leaving content frame