On Unix and Linux, the database systems uses the following special operating system user and groups:
Name |
System Default Value |
Type |
Authorizations |
---|---|---|---|
<sdb_user> |
sdb |
User |
Owner of all database resources Group member of <sdba_group> |
<sdba_group> |
sdba |
Group |
|
<support_group> |
sdb <database_name> |
Group |
Optional; support tasks |
root |
root |
User |
A SetUID root program is only required for a user change to <sdb_user> . |
<os_user> |
- |
User |
|
<sid> adm |
- |
User |
|
sqd <sid> |
- |
User |
Not for SAP liveCache databases SQD<SID> is owner of all database resources and is the operating system user for database administrators. Group member of <sdba_group> |
Database Resource |
Unix and Linux |
Microsoft Windows |
---|---|---|
Volumes |
<sdb_user> (owners) Members of the <sdba_group> group, if there is no support group Members of the support group |
Group member of Administrators, System, Creator/Owner or SDB Operators |
Backups |
<sdb_user> (Owners) Group member of <sdba_group> |
Group member of Administrators, System, Creator/Owner or SDB Operators |
Files and directories of the database software |
<sdb_user> (Owners) Group member of <sdba_group> |
All |
Database processes |
<sdb_user> (Owners) |
Local System Account |
X Server (SAP MaxDB communication server) |
<sdb_user> (Owners) |
Local System Account |
Database Resource |
Unix and Linux |
Microsoft Windows |
---|---|---|
All |
<sid> adm |
<SID> ADM |
All |
sqd <sid> |
SQD <SID> |
<sid>/ <SID> = System ID of the SAP system |
Which SAP MaxDB Versions Support These Special Operating System User and Groups?
All SAP MaxDB versions 7.5 and higher support them.
How Are the Special Operating System User and Groups Created?
The database installation program creates the special operating system users and groups during the installation of the database software. For more information, see the Installation Manual, Installing and Updating the Software on Unix and the corresponding installation guides for SAP systems.
Create the special operating system user and groups before installing the database software. During the installation process, they then receive the authorizations for accessing the database resources.
If you manage the operating system users and groups for your system centrally in the network, then you must create them there before starting the installation.
For information about how to create operating system users and groups, see your operating system documentation.
SAP MaxDB Security Guide, Data Storage Security