Skip to main content

SAP HANA Database

Connector name

agthana

Connector type

Executable

Type (UI field value)

SAP HANA Database

Target system versions supported / tested

This connector manages database users on SAP HANA in-memory database servers. To manage SAP application users on SAP S/4 HANA, ECC, or R/3 systems, use agtsap instead.

The agthana connector is designed to work on the SYSTEM schema. To target a different schema, use the ODBC script connector (agtodbcscript). See ODBC script .

Connector status / support

Customer-Verified

Clients may contact Bravura Security support for assistance with this connector. Troubleshooting and testing must be completed in the client's test environment as Bravura Security does not maintain internal test environments for the associated target system.

The following Bravura Security Fabric operations are supported by this connector:

  • user verify password

  • get server information

  • administrator reset password

  • check password expiry

  • administrator verify password

  • enable account

  • disable account

  • check account enabled

  • unlock account

  • check account lock

  • create account

  • delete account

  • update attributes

  • list account attributes

  • add user to group

  • delete user from group

  • add group to group

  • remove group from group

  • List:

    • accounts

    • attributes

    • groups

    • members

For a full list and explanation of each connector operation, see Connector operations.

Preparation

Before targeting your SAP HANA Database system from Bravura Security Fabric you must:

  1. Install SAP HANA Database client software.

  2. Set up a target system administrator.

Installing client software

Before you begin, you must install the SAP HANA Database client software on the Bravura Security Fabric server. This will install the required ODBC drivers in order to connect to the database. Alternatively, if targeting the database using a Bravura Security Fabric proxy server, the client software must be installed on the proxy server.

Configuring a target system administrator

Bravura Security Fabric uses a designated administrator account (for example PSADMIN) on the SAP HANA Database to perform operations.

The administrator account requires the following permissions:

  • USER_ADMIN: System privilege in order to perform account operations.

  • ROLE_ADMIN: System privilege in order to perform group (aka. role) operations.

  • CATALOG_READ: System privilege in order to query system privileges assigned to users.

Grant privileges on any other role, schema, or privilege that you wish to manage via the connector.

Targeting SAP HANA Database

For each SAP HANA Database system, (Manage the system > Resources > Target systems):

  • Type is SAP HANA Database .

  • Address uses options described in the table below.

The full list of target parameters is explained in Target system options .

Table 1. SAP HANA Database address configuration

Option

Description

Options marked with a redstar.png are required.

Server redstar.png

The IP address/domain name and port number of the SAP HANA Database system. <server>:<port>

(key: server)

ODBC

The ODBC driver used to connect to the database. Default is HDBODBC .

(key: driver)

Encrypt

Select to secure the connection.

(key: encrypt)



In this section: