on 03-06-2015 9:28 AM
Hi,
I am trying to set up the embedded search for use with SAP HANA following this guide: Creating a Connection Between Embedded Search and SAP HANA or TREX/BWA - Search and Operational Anal...
the part that is not clear to me is the authorization part:
Specify the database user to be used. This user must be assigned the object authorizations sys.trexviadbsl and sys.trexviadbslwithparameter
I found these under object privileges in Hana studio and assigned them to the user with execute rights.
When they try to run indexing they have authorization problems. I find many error messages like this in SM21:
TR2 >'$esh:ca~id=d4836901e4d0~ty=date27~a=timestmp_cre_seg~t=esh_
TR2 >om_sysrel~cv=longdate$' ) )
BY2 Database error 258 at EXE
BY0 > insufficient privilege: Not authorized
TR2 !!! SQL exception was caught !!! insufficient privilege:
TR2 >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient
TR2 >privilege: Not authorized / SQL_STATEMENT = ALTER TABLE
TR2 >"SAPRS2"."ESH_OM_SYSREL" WITH PARAMETERS ( CONCAT_ATTRIBUTE
TR2 >= ( 'EXPRESSION= LONGDATE( "TIMESTMP_MOD_SEG" )',
TR2 >'$esh:ca~id=ed0bafc506cb~ty=date27~a=timestmp_mod_seg~t=esh_
TR2 >om_sysrel~cv=longdate$' ) )
BY2 Database error 258 at EXE
BY0 > insufficient privilege: Not authorized
TR2 !!! SQL exception was caught !!! insufficient privilege:
TR2 >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient
TR2 >privilege: Not authorized / SQL_STATEMENT = CREATE COLUMN
TR2 >VIEW "ESH:RS2101~RS2101~ESH_CATEGORY~%D9632530~" WITH
TR2 >PARAMETERS ( description = 'Node ESH_OM_ACATEG Check
TR2 >ESH_CAT_AUTH', indexType = 6, joinIndex =
TR2 >"SAPRS2"."ESH_OM_ACATEG", joinIndexType = 0,
TR2 >joinIndexEstimation = 0, constraint = ( 'C0000000001', 0,
TR2 >'', "SAPRS2"."ESH_OM_ACATEG", "MANDT", 'EQ', '101' ), view
TR2 >= ( 'default', "SAPRS2"."ESH_OM_ACATEG" ), defaultView =
TR2 >'default', viewAttribute = ( 'ESH_CATEG',
TR2 >"SAPRS2"."ESH_OM_ACATEG", "CATEGORY", '', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_OM_ACATEG~KEY0003',
TR2 >"SAPRS2"."ESH_OM_ACATEG", "CATEGORY_GUID", '', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_OM_ACATEG~KEY0002',
TR2 >"SAPRS2"."ESH_OM_ACATEG", "MODEL_GUID", '', 'default',
TR2 >'attribute' ), freeStyleSearchAttribute = 'ESH_CATEG:1',
TR2 >freeStyleSearchAttribute = 'ESH_OM_ACATEG~KEY0003:1',
TR2 >freeStyleSearchAttribute = 'ESH_OM_ACATEG~KEY0002:1' )
BY2 Database error 258 at EXE
BY0 > insufficient privilege: Not authorized
TR2 !!! SQL exception was caught !!! insufficient privilege:
TR2 >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient
TR2 >privilege: Not authorized / SQL_STATEMENT = CREATE COLUMN
TR2 >VIEW "ESH:RS2101~RS2101~ESH_CONNECTOR~%52CAED9F~" WITH
TR2 >PARAMETERS ( description = 'Node ESH_OM_AOTYP Check
TR2 >ESH_CONN_AUTH', indexType = 6, joinIndex =
TR2 >"SAPRS2"."ESH_OM_AOTYP", joinIndexType = 0,
TR2 >joinIndexEstimation = 0, joinIndex =
TR2 >"SAPRS2"."ESH_OM_LOGSYS", joinIndexType = 0,
TR2 >joinIndexEstimation = 0, joinIndex =
TR2 >"SAPRS2"."ESH_ADM_RFC_CONN", joinIndexType = 0,
TR2 >joinIndexEstimation = 0, joinIndex =
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", joinIndexType = 0,
TR2 >joinIndexEstimation = 0, joinCondition = ( 'J0001',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "MODEL_GUID",
TR2 >"SAPRS2"."ESH_OM_LOGSYS", "MODEL_GUID", '', 1, 0 ),
TR2 >joinCondition = ( 'J0002', "SAPRS2"."ESH_OM_LOGSYS",
TR2 >"LOGSYS", "SAPRS2"."ESH_ADM_RFC_CONN", "CONNECTION_GUID",
TR2 >'', 1, 0 ), joinCondition = ( 'J0003',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_NAME",
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "OBJECT_TYPE", '', 1, 0 ),
TR2 >joinPath = ( 'JP001', 'J0001,J0002' ), joinPath =
TR2 >( 'JP002', 'J0003' ), constraint = ( 'C0000000001', 0, '',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "MANDT", 'EQ', '101' ), constraint
TR2 >= ( 'C0000000002', 0, '', "SAPRS2"."ESH_OM_AOTYP", "TYPE",
TR2 >'IN', '1 ;B;V' ), constraint = ( 'C0000000003', 0, '',
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "MANDT", 'EQ', '101' ),
TR2 >constraint = ( 'C0000000004', 0, '',
TR2 >"SAPRS2"."ESH_ADM_RFC_CONN", "MANDT", 'EQ', '101' ),
TR2 >constraint = ( 'C0000000005', 0, '',
TR2 >"SAPRS2"."ESH_OM_LOGSYS", "MANDT", 'EQ', '101' ), view =
TR2 >( 'default', "SAPRS2"."ESH_OM_AOTYP" ), defaultView =
TR2 >'default', viewAttribute = ( 'SYS_CLIENT',
TR2 >"SAPRS2"."ESH_ADM_RFC_CONN", "CLIENT", 'JP001', 'default',
TR2 >'attribute' ), viewAttribute = ( 'SYSTEM_ID',
TR2 >"SAPRS2"."ESH_ADM_RFC_CONN", "SYSTEM_ID", 'JP001',
TR2 >'default', 'attribute' ), viewAttribute = ( 'SCONN_ID',
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "SC_ID", 'JP002', 'default',
TR2 >'attribute' ), viewAttribute = ( 'TEMPL_TYPE',
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "TEMPLATE_TYPE", 'JP002',
TR2 >'default', 'attribute' ), viewAttribute = ( 'TEMPL_NAME',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_NAME", '', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_OM_AOTYP~KEY0002',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "MODEL_GUID", '', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_OM_AOTYP~KEY0003',
TR2 >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_GUID", '', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_ADM_SC_MAIN~KEY0003',
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "SC_ID", 'JP002', 'default',
TR2 >'attribute' ), viewAttribute = ( 'ESH_ADM_SC_MAIN~KEY0002',
TR2 >"SAPRS2"."ESH_ADM_SC_MAIN", "TEMPLATE_TYPE", 'JP002',
TR2 >'default', 'attribute' ), viewAttribute =
TR2 >( 'ESH_ADM_RFC_CONN~KEY0002', "SAPRS2"."ESH_ADM_RFC_CONN",
TR2 >"CONNECTION_GUID", 'JP001', 'default', 'attribute' ),
TR2 >viewAttribute = ( 'ESH_OM_LOGSYS~KEY0002',
TR2 >"SAPRS2"."ESH_OM_LOGSYS", "MODEL_GUID", 'JP001', 'default',
TR2 >'attribute' ), freeStyleSearchAttribute = 'SYS_CLIENT:1',
TR2 >freeStyleSearchAttribute = 'SYSTEM_ID:1',
TR2 >freeStyleSearchAttribute = 'SCONN_ID:1',
TR2 >freeStyleSearchAttribute = 'TEMPL_TYPE:1',
TR2 >freeStyleSearchAttribute = 'TEMPL_NAME:1',
TR2 >freeStyleSearchAttribute = 'ESH_OM_AOTYP~KEY0002:1',
TR2 >freeStyleSearchAttribute = 'ESH_OM_AOTYP~KEY0003:1',
TR2 >freeStyleSearchAttribute = 'ESH_ADM_SC_MAIN~KEY0003:1',
TR2 >freeStyleSearchAttribute = 'ESH_ADM_SC_MAIN~KEY0002:1',
TR2 >freeStyleSearchAttribute = 'ESH_ADM_RFC_CONN~KEY0002:1',
TR2 >freeStyleSearchAttribute = 'ESH_OM_LOGSYS~KEY0002:1' )
BY2 Database error 258 at OPC
BY0 > insufficient privilege: Not authorized
.It's clear to me that there is something missing when it comes to the authorizations in the Hana database and I have been trying to read the security guide and various articles trying to find out how to solve this.
I would appreciate any hints on how to solve this problem.
regards,
Kristian
Hello Kristian,
The user you have created and assigned in your DBCON does not have rights for objects in the SAPRS2 schema.
If this is a test system, please use the SAPSR2 user in your DBCON and don't forget to assign SAPSR2 sys.trexviadbsl and sys.trexviadbslwithparameter.
Kindest Regards,
Amerjit
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
89 | |
10 | |
9 | |
9 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.