Enabling Users

Objective

After completing this lesson, you will be able to setup Users and Assign Roles

Users and Roles

Once you have set up the SAP BDC landscape, you then configure user access.

To do this you create users and roles.

Managing Roles in SAP Business Data Cloud

Roles determine the specific permissions and privileges granted to a user. Depending on their job responsibilities, a user can be assigned one or multiple roles.

You can create custom roles to meet your organization's needs by starting with a blank role or by using a standard role template as a foundation.

Roles page in SAP BDC Cockpit showing the four standard roles.

SAP provides the following standard roles:

BD Administrator: Grants full administrative access to the SAP Business Data Cloud Cockpit.
BD Viewer: Provides read-only access to the SAP Business Data Cloud Cockpit.
Catalog Administrator: Manages data governance tasks, such as connecting to source systems to extract metadata, maintaining business glossaries, creating classification tags, and publishing assets.
Catalog User: Enables users to search for and discover data products or intelligent applications. This role is ideal for modelers creating new content or viewers consuming governed assets.

Each role is made up of specific privileges that you choose from a predefined list. These privileges control how a user interacts with the SAP BDC. Some complex tasks may require a combination of different privileges.

Privileges assigned to the Data Catalog Administrator role.

Consider these examples:

The BDC Data Packages privilege includes Read (viewing content) and Update (installing applications or activating data packages).
To share a data product, a user requires the Read permission for the Catalog Asset privilege and the Share permission for the Cloud Data Product privilege.

For a detailed list of all available privileges, see the SAP Business Data Cloud Administration Guide.

Managing Users

As an administrator, you can create users individually or perform a bulk import using a CSV file within the SAP BDC Cockpit.

Users page of the SAP Business Data Cloud Cockpit showing a list of users and filter criteria pane with the four distinct roles.

When setting up a user, you must define the following properties:

User ID: A unique identifier that must use uppercase letters, numbers, and underscores (maximum 20 characters). Note that the User ID cannot be modified after the account is created.
Email Address: A valid address used to send a welcome email containing account activation steps and initial password setup instructions.
User Details: While only the last name is mandatory, it is recommended to provide the first name and a display name to help identify users across the system.
Role Assignments: These settings define the specific access levels and permissions for the user.

Edit User dialog showing a user's main properties.

Let's Summarize What You've Learned

In this lesson, you learned how to manage users and roles in SAP Business Data Cloud:

Administrators can add users individually or in bulk via CSV, ensuring each has a unique ID and valid contact details.
Access levels are controlled through role assignments, which can be assigned singly or in combination.
Standard roles include BD Administrator, BD Viewer, Catalog Administrator, and Catalog User, each serving a specific business function.
Roles are built from specific privileges that define how users interact with system resources.
Proper configuration supports secure access control by providing users with only the permissions necessary for their roles.

Continue to quiz