Privileges Required to use SAP Systems

To use SAP systems, you need one of the following:

• scheduler-administrator or redwood-administrator role
• system or partition-level permissions
• object-specific privileges

Using SAP systems

The following privilege ranks are available on SAP systems:

• Create - allows you to create an SAP system on the level the privilege was granted (system, partition), you have no further privileges through this rank, you automatically get All privilege rank on SAP systems you create, as well as on the process server and queue of the SAP system.
• View - allows you to view an SAP system on the level the privilege was granted (system, partition), you have no further privileges through this rank.
• Edit - allows you to create, view, and edit an SAP system on the level the privilege was granted (system, partition).
• Delete - allows you to create, view, and delete an SAP system on the level the privilege was granted (system, partition).
• All - full control over an SAP system on the level the privilege was granted (system, partition).

You always need View privileges on the partition of the SAP system.

SAP systems can reference the following objects, you need at least View privileges on these objects as well as their partition(s) when you want to create/edit/delete an SAP system that references them:

• Application.
• Event.
• Queue.

When you create an SAP system, you also need to the necessary privileges to create the following:

• Queue.
• Process Server.

Built-in Roles

• The scheduler-administrator or redwood-administrator built-in role provides full control over SAP systems.
• The scheduler-viewer built-in role provides read-only access to SAP systems.

Creating SAP systems

You need one of the following privilege ranks to be able to create SAP systems:

• Create - allows you to create SAP systems on the level the privilege was granted (system, partition), you have no further privileges through this rank, you automatically get All privilege rank on SAP systems you create.
• Edit - allows you to create, view, and edit all SAP systems on the level the privilege was granted (system, partition).
• Delete - allows you to create, view, and delete all SAP systems on the level the privilege was granted (system, partition).
• All - full control over all SAP systems on the level the privilege was granted (system, partition).

Editing SAP systems

To successfully edit an SAP system, you must have one the following privileges:

• Edit - privilege rank on the SAP system, or on SAP system in its partition or system-wide
• Delete - privilege rank on the SAP system, or on SAP system in its partition or system-wide
• All - privilege rank on the SAP system, or on SAP system in its partition or system-wide

See Also

• Privileges Required to use Applications
• Privileges Required to use Event Definitions
• Privileges Required to use Objects