To maximize control over the SAP HANA database, you can disable certain features in tenant databases, for example, import and export operations or the ability to create or manage backups for specific databases. As some features are not required or desirable in specific environments, this area provides a further option to deactivate functions like direct access to the file system or network. A further advantage is that there is no need to know the syntax of the affected parameters.
Using the Restricted Features button in the Database Management application of your system database opens the Blocklisted & Restricted page. After choosing a tenant database, you can enable or disable specific features on the right-hand side using the checkboxes.
To disable features on a tenant database, you need the INIFILE ADMIN system privilege.
The following examples show 2 different scenarios of using the restricted features list:
Example 1: Restricted feature Import
In this example, all import operations for the respective tenant database are deactivated. As a consequence, the error message, as an output of the Database Explorer, points to the system view M_CUSTOMIZABLE_FUNCTIONALITIES, which provides information about features that can be disabled and their status. This view exists in both the SYS schema of every database, where it contains database-specific information, and in the SYS_DATABASES schema of the system database, where it contains information about the enablement of features in all databases.
Example 2: Restricted feature BACKUP - IGNORE_PATH_RESTRICT
This restricted feature is used to deactivate the option to provide an individual file path when using backup operations like the creation of a backup. In accordance with the standard parameter basepath_backup, the respective value is fixed, but can be enhanced with a Subpath, however.
Some restricted features directly force specific disabling of user interface elements in the SAP HANA cockpit. If, for example, the backup feature is disabled, the buttons Create Backup and Backup Schedules automatically disappear when accessing the backup area of the affected database.
For more information, see Restricted Features in Tenant Databases in the SAP HANA Security Guide.