Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control.

(rev. 1)

10151 Deerwood Park Boulevard Building 100, Suite 120 Jacksonville, Florida 32256

Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control

www.zanett.com  1.866.611.3282

Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control.

Oracle Business Intelligence Enterprise Edition (OBIEE) Security is managed through: a) BI Server Security Manager accessed through the BI Server Administration Tool. Set permission to business model, tables, columns and subject areas Specify filters to limit data accessible by users Set authentication options

b) BI Presentation administration accessed through Presentation Web Services. Manage Web groups and users Set Permissions for Web Catalog items Manage privileges and rights given to groups and users Control access to dashboards

c) Catalog Manager. - Set permission for Web Catalog items (Dashboards and Dashboards pages) Out-of-the-box, the Analytics repository ( .rpd file) is configured with multiple user groups. Some of the definitions of them can be found in the installation and configuration manual and Oracle OTN web site. The most important users/groups are: A) Administrators - Group B) Administrator - User Object Level Security: There are two types of object level security, Repository Level and Web Level :
2

Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control

Repository Level: In the presentation layer we can set repository level security by giving permission or denying permission for specific users/groups to see a particular table or column in a subject area. Web Level: this level defines security for objects stored in the Web Catalog, such as Dashboards, Dashboards Pages, Folders and Reports. Users can only view the objects for which you are authorized. Data level Security: Data level security applies rules based on the actual data to limit what users can see in a report. When multiple users run the same report, the results that are returned to each depend on their data-level access rights. For example a sales vice president sees results for all regions, while a sales representative for a particular region sees only data for that region. Others OBIEE users and groups must be defined by the administrator, jobs responsibilities change base on company and department structure. Below are the most popular users and basic responsibilities.

Roles and Responsibilities Administrator: The administrators are responsible for modifying/maintaining the metadata repository or RPD file. This role is responsible for the creation of other users and groups, including, as well as defining Object Level and Data Level Security. Developer: The OBIEE Developer is responsible for building OBIEE report, dashboards, dashboard pages and prompts using OBIEE/Answers development tools. The Developer will also maintain and setup OBIEE advance features, including scheduler and iBots. Super User: Super users are responsible for supporting other report users in their group/location. Super users should receive additional training in creating reports and in understanding the content and navigation of dashboards so that they can answer questions and provide immediate support for ad-hoc reporting and analysis. Super users may also create new reports for sharing with others in the work group. During the development of new enhancements, Super users will provide support for the requirements analysis and testing phases. User: Typically, users are responsible for running reports and viewing dashboards in support of their day-today activities. Users generally follow developed drilldown paths using established prompts. Specific training on Answers and ad-hoc analysis is not typically needed for this role.

Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control

Below are pictures of OBIEE/OBAW Security Administration Tolls. a) Administration Tool b) Security Manager Tool c) OBIEE/OBAW Groups and Users. d) Web Catalog Manager.

Oracle Business Intelligence Enterprise Edition (OBIEE) Access Control