Roles and Permissions in Oracle BI Publisher

Hi,
I am trying to do Role based access in the Oracle BI reporting.The roles will be in the OVD/OID and OBIR reports access should be controlled as per those roles.
The document I refered is
http://docs.oracle.com/cd/E14571_01/bi.1111/e13880/T539768T526688.htm#xdosa_und_users.
When I clicked on Permissions and added some permissions like Read,Write etc..and clicked Ok,"Failed" message is displaying.
Any idea why this error is coming?
Thanks in advance.
Edited by: Subin Cheruvath on Feb 17, 2013 11:00 PM

DiscoUser.
Skulls lays it out well in that a database user has a database name (ie: rproudman). Then they can have a role (ie: cost manager).
Similarly in Oracle Apps, there is an Oracle Apps user (ie: could be the same - rproudman). And they can have one or many responsibilities (ie: cost manager).
Where Disco is concerned, is that if you create an Apps mode EUL, when you log in with your Oracle Apps username and password, you are presented with a list of Oracle Apps responsibilities that have been assigned to you in Oracle Apps (unless you only have 1 responsibility where the list won't be presented, but you'll be using that responsibility by default). As security, workbooks, etc. can - AND SHOULD - only be shared with responsibilities, when you log in to Disco as one responsibility, you might see a number of reports you're allowed to run. Go back in with a new responsibility and you may see a different set of reports. Works just like switching responsibility in Oracle Apps.
Russ

Similar Messages

  • Create Roles and Permissions using API

    Hello,
    I'm new to Java and I'm trying to create Roles and Permissions in LiveCycle using API's. Can someone please check and correct my code below?
                //Create a ServiceClientFactory object
                ServiceClientFactory myFactory = ServiceClientFactory.createInstance(connectionProps);
                // Create an AuthorizationManagerServiceClient object
                AuthorizationManagerServiceClient amClient = new AuthorizationManagerServiceClient(myFactory);
                RoleImpl ri = new RoleImpl();
                ri.setName("Test ES Role");
                ri.setDescription("Test Role via API");
                ri.setMutableStatus(true);
                amClient.createRole(ri);
    Executing the above code throws exception as below;
    com.adobe.idp.um.api.UMException| [com.adobe.livecycle.usermanager.client.AuthorizationManagerServiceClient] errorCode:16385 errorCodeHEX:0x4001 message:Exception thrown is NOT a DSCException : UnExpected From DSC chainedException:java.lang.IllegalStateExceptionchainedExceptionMessage:null chainedException trace:java.lang.IllegalStateException
              at com.adobe.idp.dsc.clientsdk.ServiceClientFactory$1.handleThrowable(ServiceClientFactory.j ava:72)
              at com.adobe.idp.dsc.clientsdk.ServiceClient.invoke(ServiceClient.java:220)
              at com.adobe.livecycle.usermanager.client.AuthorizationManagerServiceClient.createRole(Autho rizationManagerServiceClient.java:159)
              at com.adobe.lc.ManageRolesAndPermissions.main(ManageRolesAndPermissions.java:70)
    Caused by: java.lang.NoClassDefFoundError: javax.ejb.EJBException
              at com.adobe.idp.dsc.clientsdk.ServiceClientFactory.evaluateMessageDispatcher(ServiceClientF actory.java:595)
              at com.adobe.idp.dsc.clientsdk.ServiceClient.invoke(ServiceClient.java:215)
              ... 2 more
    Caused by: java.lang.ClassNotFoundException: javax.ejb.EJBException
    Thank you,
    Sandeep

    Mahesh,
    Refer to your other thread ..
    API to create new items in inventory
    API to create new items in  inventory
    Regards,
    Hussein

  • OBIEE Roles and Permissions

    Hi,
    I am new to OBIEE. I have installed OBIEE 10.1.3.4.1 in Windows Machines.
    I want to create user in OBIEE and i need to give appropriate permissions those users.
    How to give roles and permissions in OBIEE .Please help me
    Thanks,
    Vijay.

    Hi Vijay,
    Please start here; http://gerardnico.com/wiki/dat/obiee/security_10g
    Good Luck,
    Daan Bakboord
    http://obibb.worpdress.com

  • Roles and responsiblities of oracle dba in development team

    What should be the roles and responsiblities of oracle dba in development team?
    Does Application dba should have oracle user credentials on db box?

    Hi, Application DBA work as like production DBA, while resolving issue SLA would not apply for them . Apart from this developement team pressure will be there.
    These are points remembered.
    Creating test Db for testing environment,
    Schema Replication of POC
    replication the DB for interface setup .
    User , Space management.
    Roles and Security management
    Space Forecasting -this will be useful when you are estimating for storage
    need to give application set up to Production DBA with proper specification.
    maintaining the schema changes
    Ensure that right script shas to provide the Production DBA team .
    Deployment of the application.
    performance tuning..
    All environment memory /CPU statistisc need to check by regular interval.If any issues need to escalte to INFRASTRUCTURE team
    HTC
    tippu

  • Roles and permissions

    I have a couple of questions.
    1. How would I go about fitting a custom permission resolver for SOA suite ?
    2. Is there a way to print the roles,users and permissions to debug ? My roles could be in LDAP or a database but permissions are in system-jazn-data.xml. Why are these permissions stored in a XML file ?
    Mohan

    Where do the LDAP implementation classes write their logs ?
    My worklist application writes logs to orabpel.log like the following.
    <2009-05-16 16:46:44,954> <DEBUG> <collaxa.cube.services> <LDAPUtil::getJNDIContext> JNDI Connection received
    My bpel console hits openldap but does not write log the same way. It shows that the user does not have enough privileges. So basically I don't see what is being done by my LDAP classes.

  • Associate roles and permissions to users that existe on a database

    Hi,
    i want realise a secure authentification i used ADF Configuration but i found out that i cant bring my users from my database. i can just create new users with roles in Jdeveloper.
    do you how we can bring users to Jdeveloper and associate to them roles and permission ?

    i found this tutorial that is that what i did :
    1. Start up weblogic server (Run .. Start Server Instance)
    2. Log on to weblogic console ( http://localhost:7101/console/ )
    3. Use default username/password weblogic/weblogic1
    4. Create a datasource to connect to the schema where the authenticating database tables are (Services .. JDBC .. Data Sources)
    5. Use unique name for datasource. Use JINDI name of jdbc/
    6. Enter database name, schema name and password and test
    7. Add new Authentication provider (Security Realms .. myrealm .. Providers .. New)
    8. Enter datasource name, type SQLAuthenticator click Ok
    9. Going back into provider, change control flag to Sufficient
    10. Select Provider Specific tab and choose Plaintext passwords, password algorithm SHA-1
    11. Shut down weblogic
    12. Edit config.xml file in JDEV_DIR/system11.1.1.2.36.55.36/DefaultDomain/config and replace sql authenticator sql statements with those from web blog
    13. Restart weblogic.
    14. Go to users/groups tab in securty realm and view users and groups imported from database
    15. Set control flag for other providers to "Sufficient"
    source : http://brent.hmdclinical.com/2010/03/using-database-tables-as-weblogic.html
    but the step 12 i dont know what i need to change and with what ?

  • Query on Roles and permissions in UCM 11g

    Hi,
    I have a query as follows:
    The administrator user can assign multiple roles to a user. If a user has more than one role, the permission becomes ______and ____.
    Is it,
    Addictive
    Less Restrictive
    More Restrictive
    Subtractive
    Please help.

    Sounds like a certification test question :-)
    I think the correct answers are Addictive and Less Restrictive
    (the user will get permissions based on all the roles he or she is assigned to)

  • Oracle Applications Support Roles and Responsibilities

    can anyone tell me roles and responsibilities of Oracle application support team.

    This is not an SQL or PL/SQL question.
    As already mentioned, any job title is dependent on the company's own interpretation of it.
    locking this thread

  • Oracle BI Publisher - can not access Shared Folder , using Oracle BI Server

    Hi there,
    We have an installed OBIEE and BIP (BI Publisher) system which is the security setting of BIP using "Oracle BI Server".
    Our OBIEE security is using the combination of LDAP (authentication) and Relational Table (for grouping user privillege)
    The integration connection between OBIEE and BIP is successfull, and I can connect using Administrator to the BIP
    But when I assign a general user using group : XMLP_Admin (define in rpd file and relational table), the user can log in to BIP, but can NOT access the Shared Folder.
    the error desc : "Error 500: SRVE0199E: OutputStream already obtained"
    Anyone can help ?
    Thanks a lot
    -toni

    Did you define Roles and Permissions to the shared folder from BIP Admin?
    -Prakash

  • Missing Oracle.bi.publisher.ScheduleReport permission

    I wanted to remove the ability for my BIConsumer role to schedule BI Publisher report jobs. I accomplished that by editing the BIConsumer Application Policy and removing the oracle.bi.publisher.scheduleReport resource name. Mission accomplished.
    Now I want to add that permission (resource name) to my BIAuthor policy, and I can't. When I edit the BIAuthor Application Policy and attempt to add the bi.publisher.ScheduleReport resource name, it isn't in the list of permissions I can add. It's just gone. I see 7 permissions that start with oracle.bi.publisher. scheduleReport isn't one of them.
    Working with Windows 32-bit version of 11.1.1.6.2 BP1.
    HELP!!

    Excellent. Thanks for the links. I was able to manually modify the system.jazn-data.xml file and add back the missing piece. This still feels like a bug in the interface, almost like the "available permissions" list is generated from that xml file, so that once it's gone from all policies it's just GONE. It certainly doesn't appear that the list is coming from a central location.
    In any event, full CORRECT points awarded, and thank you for the speedy reply yesterday.

  • How to create a report of users in ucm about their roles and permission

    Hi All ,
    I need to create a report and it should contain all the users in ucm as well as their roles and permissions. Basically the report would be for the admin who can see all the users in a single report and can know about the roles and access of each and every users.
    How to create such report ?? I have tried from web layuot editor but the default report template i.e stdUserReport in user datasource does not contain more than three fields..Is there any method to get such kind of report???
    Please suggest!!

    There was an example component to demonstrate this kind of function. Under Stellent in version 7.5
    I do not know if they hand it out anymore but it is not on the standard samples page for Oracle. You may want to open a Support SR to ask for it. It should still be around in their servers if they can get permission to hand it out as a sample again.
    Sample CustomReports component to demonstrate how to create customized reports
    CustomReportsBundle.zip
    Date:     October 30, 2006
    Sample Version:     version=2006_10_20 (build 1)
    Product and Version:     Content Server
    Sample Status:     This is a Stellent Sample. Stellent Samples are free and include non-supported add-ons, utilities, tutorials or programming examples. It may require additional configuration or security auditing for maximum effect. It is not supported by Stellent without a consulting engagement.

  • Problem with Roles and Triggers

    I'm having a strange problem with Roles and Triggers in Oracle. It's a little difficult to describe, so bear with me...
    I'm trying to create a trigger that inserts records into a table belonging to a different user/owner. Of course, the owner of this trigger needs rights to insert records into this other table. I find that if I add these rights directly to the owner of the trigger, everything works okay and the trigger compiles successfully.
    However, if I first create a Role and grant the "insert" rights to it, and then assign this role to the owner of the trigger, the trigger does not compile successfully.
    To illustrate this, here's an example script. I'm using Oracle 10g Release 2...
    -- Clean up...
    DROP TABLE TestUser.TrigTable;
    DROP TABLE TestUser2.TestTable;
    DROP ROLE TestRole;
    DROP TRIGGER TestUser.TestTrigger;
    DROP USER TestUser CASCADE;
    DROP USER TestUser2 CASCADE;
    -- Create Users...
    CREATE USER TestUser IDENTIFIED BY password DEFAULT TABLESPACE "USERS" TEMPORARY TABLESPACE "TEMP" QUOTA UNLIMITED ON "USERS";
    CREATE USER TestUser2 IDENTIFIED BY password DEFAULT TABLESPACE "USERS" TEMPORARY TABLESPACE "TEMP" QUOTA UNLIMITED ON "USERS";
    CREATE TABLE TestUser.TrigTable (TestColumn VARCHAR2(40));
    CREATE TABLE TestUser2.TestTable (TestColumn VARCHAR2(40));
    -- Grant Insert rights on TestTable to TestRole...
    CREATE ROLE TestRole NOT IDENTIFIED;
    GRANT INSERT ON TestUser2.TestTable TO TestRole;
    -- Add TestRole to TestUser. TestUser should now have rights to INSERT on TestTable
    GRANT TestRole TO TestUser;
    ALTER USER TestUser DEFAULT ROLE ALL;
    -- Now, create the trigger. This compiles unsuccessfully...
    CREATE TRIGGER TestUser.TestTrigger AFTER INSERT ON TestUser.TrigTable
    BEGIN
    INSERT INTO TestUser2.TestTable (TestColumn) VALUES ('Test');
    END;
    When I do a "SHOW ERRORS;" after this, I get:
    SQL> show errors;
    Errors for TRIGGER TESTUSER.TESTTRIGGER:
    LINE/COL ERROR
    2/3 PL/SQL: SQL Statement ignored
    2/25 PL/SQL: ORA-00942: table or view does not exist
    SQL>
    As I said above, if I just add the Insert rights directly to TestUser, the trigger compiles perfectly. Does anyone know why this is happening?
    Thanks!
    Adrian

    Hi Raghu,
    If the insert rights exist only on TestRole, and TestRole is assigned to TestUser, I can do the INSERT statement you suggest with no problems if I just execute it from SQLPlus (logged in as TestUser).
    The question is, why does the same INSERT fail when it's inside the trigger?

  • Roles included in Roles and how it effects User Content

    I want to have one role which generates a tab called "Budget Development" under this tab depending on the users other assigned roles I want from 1 to 3 addition tabs or selections to appear. Based opn user assigned Roles
    When I create 3 additional roles, and assign them to the Parent Role (Budget  Development) all 3 tabs appear evenif the addional roles are not assigned to the user.
    Role 1 "Budget Development"
                Role 1.1 "Budget Add"
                Role 1.2  "Budget Change"
                Role 1.3  " Budget Delete"
    I have access to all 3 tabs/selection and the functionality when I am assigned the 1 role of "Budget Development"
    How do I selectivly Display Sub-Roles based on Portal Roles and permissions etc.
    Thanks for any help.
    Sarah

    Hi Sarah,
                 You can achieve this by the 'Merged Role Concept'.
    1)Create 3 roles with the same name say "Budget Development" which will have different ID's though.
    -Under the role properties set the "Merge ID" for each role. The mergeID has to be the same for all the 3 roles.
    2) Now create 3 worksets say "Budget Add", "Budget Change" and " Budget Delete".
    - and assign each of these worksets to 3 different roles that we have first defined.
    Now depending upon which user needs what access you can assign the roles. The user will see one role but different worksets underneath based upon what he has been assigned.
    -Let me know if you have any further issues with this.

  • User, user roles and previllages

    I have made all the tables under one user for my oracle forms, is it a good approach or should i use multiple users for this and how can i use user roles and villages for oracle forms?
    Thanks
    Hina

    In our organization, we usually has an application owner and another schema with limited privilege to connect to from application (in this case forms). For example we have application owner say DBO which owns all the objects in the application and another user IA_APP is there to connect to database from application. Privileges such as SELECT, INSERT, UPDATE, DELETE is given to IA_APP user. Object access is provided through public synonym. You can do analogy to this in your application and database.
    Regards,
    Virendra

  • Oracle BI Groups, Roles and permission through external Table

    Hi,
    We are using SSo integration with Oracle BI 10g. We need to fetch the roles , permission and groups through an external table to our Oracle BI Dashboard. Please let me know if this is possible.
    Thanks,
    Aditya Arya

    Thanks a lot shru.
    I have achieved this User authentication through external table but the roles, groups and permissions are assigned inside Oracle BI only. I need to get the roles from an external database table and map the users in that database only. I do not want to use the administration screen in Oracle BI to achieve this.
    Also, I need to know what is the OBIEE variable i can use to override roles, as we use USER for adding a new user and the values that can be used to map the permissions.
    Thanks,
    Aditya Arya

Maybe you are looking for