Roles Required for System Administration Tasks

Many SAP ASE commands and procedures require the system administrator or system security officer role. Other system administration information is relevant to database owners.

Various security-related, administrative, and operational tasks are grouped into the following user roles

These roles provide individual accountability for users who are performing operational and administrative tasks. Their actions can be audited and attributed to them. A system administrator operates outside the discretionary access control (DAC) protection system; that is, when a system administrator accesses objects, SAP ASE does not check the DAC permissions.

In addition, two kinds of object owners have special status because of the objects they own: