I Got stuck in creating UME actions for the desired tables, so I found sapnote 1898072:
download the "bc~jms~permission~app.ear" file from sapnote: 1898072 - User not authorized to read JMS tables data in SQL browser.
place the file:
/usr/sap/<SID>/J<NR>/j2ee/deployment/scripts/
./deploy.csh <java_admin>:<password>@<sap_j2ee_server>:5<instance_number>04 bc~jms~permission~app.ear version_rule=all
After the deployment, the role NWA_SUPERADMIN allows the action BC_JMS_ReadAction. You can double-check this using the IdentityManagement.
You can also further assign the role NWA_SUPERADMIN to specific users or groups by using the IdentityManagement.