3353786 - User with system privilege ROLE ADMIN unable to revoke runtime role assigned by another user.

As per the guide page below, any user with ROLE ADMIN capable to revoke runtime roles granted by other users.

A role created in runtime

To be the user who granted the role, or
The system privilege ROLE ADMIN
Note

With the exception of roles granted by technical user _SYS_REPO, a user with ROLE ADMIN cannot revoke roles granted by technical users SYS and _SYS*.

SAP HANA 1.0, platform edition ; SAP HANA Cloud 1.0 ; SAP HANA, platform edition 2.0

Revoke, runtime role, ROLE ADMIN, system privilege, repository role , KBA , HAN-DB-SEC , SAP HANA Security & User Management , Problem

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Visit SAP Support Portal's SAP Notes and KBA Search.