Managing Users

Before you can work with the database, you must log on using a database tool or via an interface. When you log on, you identify yourself with a user name and authenticate your identity with the corresponding password (authentication). After authentication, you can, within the scope of the authorizations assigned to you, access and work with data in the database.

The database system differentiates between the following types of users:

The database system administrator
DBM operators who can manage databases
Database users who can change data in the database

This graphic is explained in the accompanying text.

Overview of the Users of the Database System

When creating a database you create the database system administrator, the first DBM operator and, depending on the system, further standard users. You can add further users later.

Some naming restrictions apply. More information: Conventions for User Names and Passwords

Standard Users

SAP MaxDB Standard Users
Default Name	Default Password(s)	Description
`DBADMIN` `DBA` (up to and including version 7.5)	`SECRET` `DBA` (up to and including version 7.5)	Database system administrator
`DBM`	`SECRET` `DBM`	First DBM operator with all DBM server authorizations

SAP Standard Users for Databases
Name	Description
`SUPERDBA`	Database system administrator
`CONTROL`	DBM operator with all server authorizations
`SAPR3`	In older SAP systems: Database administrator (database user of class `DBA`)
`SAP<SAPSID>`	In newer SAP systems, in particular in MCOD systems (Multiple Components One Database): Database administrator for the SAP system with the ID `<SAPSID>` (database user of class `DBA`)
`SAP<SAPSID>DB`	In Java EE systems: Database administrator for the SAP system with the ID `<SAPSID>` (database user of class `DBA`)

Simplified Logon Process Using XUSER

To simplify the logon process to databases with command line tools, you can save the logon data (user name and password, database name) in a user key using the XUSER program. The data can only be accessed by the operating system user who owns the data.

When you want to connect to the database, you only need to specify your user key.

SAP systems use XUSER for the authorization of work processes. Exception: SAP liveCache systems that use central authorization.

More information:

XUSER documentation
SAP note 39439

Where Are the Users Stored?

The database system administrator and the DBM operators are stored in the (user profile container).

More information: Configuration Files

Special Operating System Users

To protect database resources from direct access using operating system commands, special operating system users and groups are available.

More information: Special Operating System Users and Groups