cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Embedded search for SAP HANA authorization problem

former_member200236
Explorer

on ‎03-06-2015 9:28 AM

0 Kudos

Hi,

I am trying to set up the embedded search for use with SAP HANA following this guide: Creating a Connection Between Embedded Search and SAP HANA or TREX/BWA - Search and Operational Anal...

the part that is not clear to me is the authorization part:

Specify the database user to be used. This user must be assigned the object authorizations sys.trexviadbsl  and sys.trexviadbslwithparameter

I found these under object privileges in Hana studio and assigned them to the user with execute rights.

When they try to run indexing they have authorization problems. I find many error messages like this in SM21:

TR2    >'$esh:ca~id=d4836901e4d0~ty=date27~a=timestmp_cre_seg~t=esh_

TR2    >om_sysrel~cv=longdate$' ) )

BY2    Database error 258 at EXE

BY0    > insufficient privilege: Not authorized

TR2    !!! SQL exception was caught !!! insufficient privilege:

TR2    >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient

TR2    >privilege: Not authorized / SQL_STATEMENT = ALTER TABLE

TR2    >"SAPRS2"."ESH_OM_SYSREL" WITH PARAMETERS ( CONCAT_ATTRIBUTE

TR2    >= ( 'EXPRESSION= LONGDATE( "TIMESTMP_MOD_SEG" )',

TR2    >'$esh:ca~id=ed0bafc506cb~ty=date27~a=timestmp_mod_seg~t=esh_

TR2    >om_sysrel~cv=longdate$' ) )

BY2    Database error 258 at EXE

BY0    > insufficient privilege: Not authorized

TR2    !!! SQL exception was caught !!! insufficient privilege:

TR2    >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient

TR2    >privilege: Not authorized / SQL_STATEMENT = CREATE COLUMN

TR2    >VIEW "ESH:RS2101~RS2101~ESH_CATEGORY~%D9632530~" WITH

TR2    >PARAMETERS ( description = 'Node ESH_OM_ACATEG Check

TR2    >ESH_CAT_AUTH', indexType = 6, joinIndex =

TR2    >"SAPRS2"."ESH_OM_ACATEG", joinIndexType = 0,

TR2    >joinIndexEstimation = 0, constraint = ( 'C0000000001', 0,

TR2    >'', "SAPRS2"."ESH_OM_ACATEG", "MANDT", 'EQ', '101' ), view

TR2    >= ( 'default', "SAPRS2"."ESH_OM_ACATEG" ), defaultView =

TR2    >'default', viewAttribute = ( 'ESH_CATEG',

TR2    >"SAPRS2"."ESH_OM_ACATEG", "CATEGORY", '', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_OM_ACATEG~KEY0003',

TR2    >"SAPRS2"."ESH_OM_ACATEG", "CATEGORY_GUID", '', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_OM_ACATEG~KEY0002',

TR2    >"SAPRS2"."ESH_OM_ACATEG", "MODEL_GUID", '', 'default',

TR2    >'attribute' ), freeStyleSearchAttribute = 'ESH_CATEG:1',

TR2    >freeStyleSearchAttribute = 'ESH_OM_ACATEG~KEY0003:1',

TR2    >freeStyleSearchAttribute = 'ESH_OM_ACATEG~KEY0002:1' )

BY2    Database error 258 at EXE

BY0    > insufficient privilege: Not authorized

TR2    !!! SQL exception was caught !!! insufficient privilege:

TR2    >Not authorized SQL_CODE = 258 / SQL_MSG = insufficient

TR2    >privilege: Not authorized / SQL_STATEMENT = CREATE COLUMN

TR2    >VIEW "ESH:RS2101~RS2101~ESH_CONNECTOR~%52CAED9F~" WITH

TR2    >PARAMETERS ( description = 'Node ESH_OM_AOTYP Check

TR2    >ESH_CONN_AUTH', indexType = 6, joinIndex =

TR2    >"SAPRS2"."ESH_OM_AOTYP", joinIndexType = 0,

TR2    >joinIndexEstimation = 0, joinIndex =

TR2    >"SAPRS2"."ESH_OM_LOGSYS", joinIndexType = 0,

TR2    >joinIndexEstimation = 0, joinIndex =

TR2    >"SAPRS2"."ESH_ADM_RFC_CONN", joinIndexType = 0,

TR2    >joinIndexEstimation = 0, joinIndex =

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", joinIndexType = 0,

TR2    >joinIndexEstimation = 0, joinCondition = ( 'J0001',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "MODEL_GUID",

TR2    >"SAPRS2"."ESH_OM_LOGSYS", "MODEL_GUID", '', 1, 0 ),

TR2    >joinCondition = ( 'J0002', "SAPRS2"."ESH_OM_LOGSYS",

TR2    >"LOGSYS", "SAPRS2"."ESH_ADM_RFC_CONN", "CONNECTION_GUID",

TR2    >'', 1, 0 ), joinCondition = ( 'J0003',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_NAME",

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "OBJECT_TYPE", '', 1, 0 ),

TR2    >joinPath = ( 'JP001', 'J0001,J0002' ), joinPath =

TR2    >( 'JP002', 'J0003' ), constraint = ( 'C0000000001', 0, '',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "MANDT", 'EQ', '101' ), constraint

TR2    >= ( 'C0000000002', 0, '', "SAPRS2"."ESH_OM_AOTYP", "TYPE",

TR2    >'IN', '1 ;B;V' ), constraint = ( 'C0000000003', 0, '',

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "MANDT", 'EQ', '101' ),

TR2    >constraint = ( 'C0000000004', 0, '',

TR2    >"SAPRS2"."ESH_ADM_RFC_CONN", "MANDT", 'EQ', '101' ),

TR2    >constraint = ( 'C0000000005', 0, '',

TR2    >"SAPRS2"."ESH_OM_LOGSYS", "MANDT", 'EQ', '101' ), view =

TR2    >( 'default', "SAPRS2"."ESH_OM_AOTYP" ), defaultView =

TR2    >'default', viewAttribute = ( 'SYS_CLIENT',

TR2    >"SAPRS2"."ESH_ADM_RFC_CONN", "CLIENT", 'JP001', 'default',

TR2    >'attribute' ), viewAttribute = ( 'SYSTEM_ID',

TR2    >"SAPRS2"."ESH_ADM_RFC_CONN", "SYSTEM_ID", 'JP001',

TR2    >'default', 'attribute' ), viewAttribute = ( 'SCONN_ID',

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "SC_ID", 'JP002', 'default',

TR2    >'attribute' ), viewAttribute = ( 'TEMPL_TYPE',

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "TEMPLATE_TYPE", 'JP002',

TR2    >'default', 'attribute' ), viewAttribute = ( 'TEMPL_NAME',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_NAME", '', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_OM_AOTYP~KEY0002',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "MODEL_GUID", '', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_OM_AOTYP~KEY0003',

TR2    >"SAPRS2"."ESH_OM_AOTYP", "OBJECT_TYPE_GUID", '', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_ADM_SC_MAIN~KEY0003',

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "SC_ID", 'JP002', 'default',

TR2    >'attribute' ), viewAttribute = ( 'ESH_ADM_SC_MAIN~KEY0002',

TR2    >"SAPRS2"."ESH_ADM_SC_MAIN", "TEMPLATE_TYPE", 'JP002',

TR2    >'default', 'attribute' ), viewAttribute =

TR2    >( 'ESH_ADM_RFC_CONN~KEY0002', "SAPRS2"."ESH_ADM_RFC_CONN",

TR2    >"CONNECTION_GUID", 'JP001', 'default', 'attribute' ),

TR2    >viewAttribute = ( 'ESH_OM_LOGSYS~KEY0002',

TR2    >"SAPRS2"."ESH_OM_LOGSYS", "MODEL_GUID", 'JP001', 'default',

TR2    >'attribute' ), freeStyleSearchAttribute = 'SYS_CLIENT:1',

TR2    >freeStyleSearchAttribute = 'SYSTEM_ID:1',

TR2    >freeStyleSearchAttribute = 'SCONN_ID:1',

TR2    >freeStyleSearchAttribute = 'TEMPL_TYPE:1',

TR2    >freeStyleSearchAttribute = 'TEMPL_NAME:1',

TR2    >freeStyleSearchAttribute = 'ESH_OM_AOTYP~KEY0002:1',

TR2    >freeStyleSearchAttribute = 'ESH_OM_AOTYP~KEY0003:1',

TR2    >freeStyleSearchAttribute = 'ESH_ADM_SC_MAIN~KEY0003:1',

TR2    >freeStyleSearchAttribute = 'ESH_ADM_SC_MAIN~KEY0002:1',

TR2    >freeStyleSearchAttribute = 'ESH_ADM_RFC_CONN~KEY0002:1',

TR2    >freeStyleSearchAttribute = 'ESH_OM_LOGSYS~KEY0002:1' )

BY2    Database error 258 at OPC

BY0    > insufficient privilege: Not authorized

.It's clear to me that there is something missing when it comes to the authorizations in the Hana database and I have been trying to read the security guide and various articles trying to find out how to solve this.

I would appreciate any hints on how to solve this problem.

regards,

Kristian

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎03-06-2015 12:14 PM
0 Kudos

Hello Kristian,

The user you have created and assigned in your DBCON does not have rights for objects in the SAPRS2 schema.

If this is a test system, please use the SAPSR2 user in your DBCON and don't forget to assign SAPSR2 sys.trexviadbsl  and sys.trexviadbslwithparameter.

Kindest Regards,

Amerjit

Show replies
Show replies
Ask a Question