About the OBIEE Security

Hi all
I have a small issue, I need to develop security in my project.
Some users should not see the " Business_Group_Id ",
I went to Secutiry -> Users ->selected a user -> Permissions tab ->
In the general tab, I hv selected the Presentation Tab's Table -> Business_group_id ->OK
BUT STILL I AM GETTING THE BUSINESS_GROUP_ID FOR THAT USER.
CAN ANYBODY TELL ME ANY OTHER KIND OF SECURITIES....

You have to set permissions like this.
In your presentation layer, Open the column properties, and click on Permissions button. It will shows you are groups and users( if not check show all users), then set the permissions.

Similar Messages

HT1338 There is a lot of talk about the Java security issues and the ability to download a patch fix, do i need to do this or will software update pick this up for me?

There is a lot of talk about the Java security issues and the ability to download an apple patch fix, do i need to do this or will software update pick this up for me?

Thanks for that, how do I establish if I have Java installed as on Safari preferences it indicates the following
Web content - Enable Java
- Enable JavaScript

I want the Infromation and Documents about the OBIEE

Hi Friends,
First of all a wish you all a happy christmas. I want the information about the modules in OBIEE and documents or totorials. I am Business Objects Expert since 4 years I am working for Business Objects. I am planning to learn OBIEE my company has suggested to learn asap. So, I want the information regarding OBIEE. Could you please provide me the documents please.
I am eagerly waiting for your mail.
Thanks in Advance.
Regards,
Eswar

check this
http://obiee101.blogspot.com/2009/07/obiee-how-to-get-started.html

I did not activate the backup email. and I'm not sure about the answer security. Please help me!

I created a id apple. then I forgot to activate the reserve by email. I still remember my secret question, but I'm not sure about i was using accented characters or spaces. language in my country. That was my fault. I want to ask the apple support can assist me? . I tried to find it on the website but I do not speak much english for a call request. Do you can send email to me reactivated by email backup or help me answer my security question . My ipad is now locked and can not be used. Please help me !

Find someone who speaks english to help you and contact Apple. Good luck.

Should I be concerned about the JAVA security scare?

I use an iMAC with OSX 10.8.2 Mountain Lion.
In my SAFARI Security Preferences Java is Enabled.
I am always reluctant to do anything to change existing settings.
Should I Disable Java?

Oracle's released update 7u11 which fixes the exploit.

About the socket security problem,Plese help.

I use the port 843 server to send xml to swf.But not work. Please help. My Code is:
Server:
//HelloTest.java
import java.io.IOException;
import java.net.ServerSocket;
import java.net.Socket;
//让其继承线程类是为了更好控制其余的线程
public class HelloTest extends Thread {
* @param args
public static void main(String[] args) {
// TODO Auto-generated method stub
//发送策略的服务器
new HelloTest().start();
//这个是用的fuq
new Thread(new QtServer()).start();
@Override
public void run()
System.out.println("策略服务器启动");
boolean lising=true;
ServerSocket ss;
try {
ss = new ServerSocket(843);
while(lising)
try {
//得到socket服务器
Socket sc=ss.accept();
SendPolicyFile sp=new SendPolicyFile(sc);
System.out.println("为什么呢");
new Thread(sp).start();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
try {
Thread.sleep(1000);
} catch (InterruptedException e) {
// TODO Auto-generated catch block
e.printStackTrace();
ss.close();
} catch (IOException e1) {
// TODO Auto-generated catch block
e1.printStackTrace();
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.io.PrintWriter;
import java.net.Socket;
//SendPolicyFile.java
public class SendPolicyFile implements Runnable {
private Socket soc;
private OutputStream _socketOut;
private InputStream _socketIn;
public SendPolicyFile(Socket s) throws IOException
this.soc=s;
_socketOut=s.getOutputStream();
_socketIn=s.getInputStream();
//设置超时的限制
//soc.setSoTimeout(1000);
public void run() {
// TODO Auto-generated method stub
    try {
readRandSp();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
@SuppressWarnings("unused")
private void readRandSp() throws IOException
if(read().equals("<policy-file-request/>"))
System.out.println("write Policy to flash");
writePolicy();
        //close stream and socket
close();
//写策略文件的方法
private void writePolicy() throws IOException
   String string1="<?xml version=\"utf-8\" ?><cross-domain-policy><site-control permitted-cross-domain-policies=\"master-only\"/><allow-access-from domain=\"*\" to-ports=\"8001\"/></cross-domain-policy>"+"\u0000";
PrintWriter pw=new PrintWriter(_socketOut);
pw.println(string1+"\u0000");
pw.flush();
pw.close();
System.out.println(string1+"\u0000");
//关闭流
//关闭socket
public void close()
if(_socketOut!=null)
try {
_socketOut.close();
if(_socketIn!=null)
_socketIn.close();
if(soc!=null)
soc.close();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
_socketIn=null;
_socketOut=null;
soc=null;
//发送两个Socket
private String read() throws IOException
System.out.println("这里也执行吗");
StringBuffer buffer=new StringBuffer();
int codePoint;
boolean zeroByteRead=false;
do{
//这个地方阻塞了
codePoint=this._socketIn.read();
//如果接受到的codePoint为null那证明客户端与我们失去连接了
if(codePoint==0)
zeroByteRead=true;
else
buffer.appendCodePoint(codePoint);
while(!zeroByteRead && buffer.length()<30);
return buffer.toString();

I use the port 843 server to send xml to swf.But not work. Please help. My Code is:
Server:
//HelloTest.java
import java.io.IOException;
import java.net.ServerSocket;
import java.net.Socket;
//让其继承线程类是为了更好控制其余的线程
public class HelloTest extends Thread {
* @param args
public static void main(String[] args) {
// TODO Auto-generated method stub
//发送策略的服务器
new HelloTest().start();
//这个是用的fuq
new Thread(new QtServer()).start();
@Override
public void run()
System.out.println("策略服务器启动");
boolean lising=true;
ServerSocket ss;
try {
ss = new ServerSocket(843);
while(lising)
try {
//得到socket服务器
Socket sc=ss.accept();
SendPolicyFile sp=new SendPolicyFile(sc);
System.out.println("为什么呢");
new Thread(sp).start();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
try {
Thread.sleep(1000);
} catch (InterruptedException e) {
// TODO Auto-generated catch block
e.printStackTrace();
ss.close();
} catch (IOException e1) {
// TODO Auto-generated catch block
e1.printStackTrace();
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.io.PrintWriter;
import java.net.Socket;
//SendPolicyFile.java
public class SendPolicyFile implements Runnable {
private Socket soc;
private OutputStream _socketOut;
private InputStream _socketIn;
public SendPolicyFile(Socket s) throws IOException
this.soc=s;
_socketOut=s.getOutputStream();
_socketIn=s.getInputStream();
//设置超时的限制
//soc.setSoTimeout(1000);
public void run() {
// TODO Auto-generated method stub
    try {
readRandSp();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
@SuppressWarnings("unused")
private void readRandSp() throws IOException
if(read().equals("<policy-file-request/>"))
System.out.println("write Policy to flash");
writePolicy();
        //close stream and socket
close();
//写策略文件的方法
private void writePolicy() throws IOException
   String string1="<?xml version=\"utf-8\" ?><cross-domain-policy><site-control permitted-cross-domain-policies=\"master-only\"/><allow-access-from domain=\"*\" to-ports=\"8001\"/></cross-domain-policy>"+"\u0000";
PrintWriter pw=new PrintWriter(_socketOut);
pw.println(string1+"\u0000");
pw.flush();
pw.close();
System.out.println(string1+"\u0000");
//关闭流
//关闭socket
public void close()
if(_socketOut!=null)
try {
_socketOut.close();
if(_socketIn!=null)
_socketIn.close();
if(soc!=null)
soc.close();
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
_socketIn=null;
_socketOut=null;
soc=null;
//发送两个Socket
private String read() throws IOException
System.out.println("这里也执行吗");
StringBuffer buffer=new StringBuffer();
int codePoint;
boolean zeroByteRead=false;
do{
//这个地方阻塞了
codePoint=this._socketIn.read();
//如果接受到的codePoint为null那证明客户端与我们失去连接了
if(codePoint==0)
zeroByteRead=true;
else
buffer.appendCodePoint(codePoint);
while(!zeroByteRead && buffer.length()<30);
return buffer.toString();

What to do about the recent Java security issue?

I am reading about the Java security issue. Do I need to do something with Safari?

Open Safari preferences, click on the Security icon in the toolbar. Uncheck the Enable Java option.

HT4623 Why isn't Apple talking about the security problem and the iOS software patch?

Why isn't Apple telling us about the iOS security problem and the software patch?

There's an iOS security problem already?
They just issued an iOS update...

Report on OBIEE Security

We use Default Authenticator and implemented the security using Weblogic console. Now my client want to see a report on the OBIEE security implemented; he want to see all the groups, roles, users listed and also interested in seeing what users and roles assigned to various groups for the project.
Is it possible to read Weblogic security Metadata?
Appreciate your thoughts on this.
Thanks
Bees

Was my answer correct? If so, please indicate so (top right of my last post). If not, then what was your answer?

HT201209 If I have forgotten about the answer

If I have forgotten about the answer security confirmation, how can I do?

If there are problems with updating then best is to download the full version and uninstall the currently installed version.
Download a fresh Firefox copy and save the file to the desktop.
* Firefox 4.0.x: http://www.mozilla.com/en-US/firefox/all.html
* Firefox 3.6.x: http://www.mozilla.com/en-US/firefox/all-older.html
* Uninstall your current Firefox version.
* Do not remove personal data when you uninstall the current version.
Remove the Firefox program folder before installing that newly downloaded copy of the Firefox installer.
* It is important to delete the Firefox program folder to remove all the files and make sure that there are no problems with files that were leftover after uninstalling.
Your bookmarks and other profile data are stored elsewhere in the [http://kb.mozillazine.org/Profile_folder_-_Firefox Firefox Profile Folder] and won't be affected by a reinstall, but make sure that you do not select to remove personal data if you uninstall Firefox.

How do I stop the stupid security warning everyone is talking about? I am very dissappointed with Firefox, I mean Chromefox! It now sucks!

I guess since I can't disable the security warnings in Firefox 30, I mean Chromefox, yes that's exactly what it is now, I am going to can Firefox until they decide to get with the program! This message pops up with just about everything so no point in asking stupid questions back like what sites, or coming up with some dumb fix that must be enabled on every site in the world! Mozilla really dropped the ball lately and should be ashamed of them selves! Firefox used to be my favorite browser because they were different! Now I see no point in having it at all! May as well just use Google Chrome! I mean after all why use a cheap substitute when you can have the real thing? Mozilla has become a joke now! Lets see what type of dumb answers come up with this post! Bet they will be " You don't want to do that" " What sites are you having problems with" This is a clean computer with clean OS and fresh install of Chromefox! You know what they say, if it looks like a duck, sound like a duck and acts like a duck, then it must be a duck! :{

Hi,
The people who answer questions here, for the most part, are other Firefox users volunteering their time (like me), not Mozilla employees or Firefox developers.
If you want to leave feedback for Firefox developers, you can go to the Firefox ''Help'' menu and select ''Submit Feedback...'' or use [https://input.mozilla.org/feedback this link]. Your feedback gets collected at http://input.mozilla.org/, where a team of people read it and gather data about the most common issues.
Wrong place to try.
I am sorry but Firefox 29 / Australis Development, and design policy decisions are again off topic on this forum. (We did initially temporarily suspend that forum policy so that people had a chance to say something)
I am sorry but we are only fellow users of Firefox there are no Developers here to see or answer these questions. It only diverts attention and effort from trying to help users with problems.
Please See for example a long recently closed thread.
* ''The I-do-not-like-Firefox-29-layout topic'' [/questions/998106]
That thread includes
*A quote of a developer's comment,
* Suggestions of where you may discuss this, or post feedback
*Helpful information for those with problems from the Firefox 29 changes
* An extract of current forum rules
If you need help and wish to continue using the current Release of Firefox please post another question making that clear and we will do our best to help
If you post again it would help to know the exact message you got and possibly a screenshot (Forum software does not permit screen shots on the first post but you could link to a site with the screenshot on)
I will close this thread as off topic.

Oracle Security : what do you think about the following policy violation ?

If you install OEM10, you will be able to see if you violate some security guidelines :
Interresting is revoking UTL_FILE from public, which is critical. Also revoke UTL_TCP and UTL_SMTP. This is going to upset an expert I know...
Take care about the failed login attempts. If you set it to 10 to the default profile, and if your DBSNMP password is NOT the default password, then Oracle will lock your account after node discovery!
In Solaris, you can disable execution of the user stack with the system parameters set noexec_user_stack=1
set noexec_user_stack_log=1. I did not find how to do it on AIX. However, those settings may have side effects.
About the ports, it complains about open ports, even if this is the port oracle listener is using! Simply ignore most of the violations there.
About JAccelerator (NCOMP), it is located on the "companion" CD.
Ok, Waiting for your feedback
Regards
Laurent
[High]      Critical Patch Advisories for Oracle Homes     Configuration     Host     Checks Oracle Homes for missing critical patches
[High]      Insufficient Number of Control Files     Configuration     Database     Checks for use of a single control file
[High]      Open ports     Security     Host     Check for open ports
[High]      Remote OS role     Security     Database     Check for insecure authentication of remote users (remote OS role)
[High]      EXECUTE UTL_FILE privileges to PUBLIC     Security     Database     Test for PUBLIC having EXECUTE privilege on the UTIL_FILE package
[High]      Listener direct administration     Security     Listener     Ensure that listeners cannot be administered directly
[High]      Remote OS authentication     Security     Database     Check for insecure authentication of remote users (remote OS authentication)
[High]      Listener password     Security     Listener     Test for password-protected listeners
[High]      HTTP Server Access Logging     Security     HTTP Server     Check that HTTP Server access logging is enabled
[High]      Web Cache Access Logging     Security     Web Cache     Check that Web Cache access logging is enabled
[High]      Web Cache Dummy wallet     Security     Web Cache     Check that dummy wallet is not used for production SSL load.
[High]      HTTP Server Dummy wallet     Security     HTTP Server     Check that dummy wallet is not used for production SSL load.
[High]      Web Cache owner and setuid bit'     Security     Web Cache     Check that webcached binary is not owned by root and setuid is not set
[High]      HTTP Server Owner and setuid bit     Security     HTTP Server     Check the httpd binary is not owned by root and setuid bit is not set.
[High]      HTTP Server Directory Indexing     Security     HTTP Server     Check that Directory Indexing is disabled on this HTTP Server
[High]      Insufficient Redo Log Size     Storage     Database     Checks for redo log files less than 1 Mb
[Medium]      Insufficient Number of Redo Logs     Configuration     Database     Checks for use of less than three redo logs
[Medium]      Invalid Objects     Objects     Database     Checks for invalid objects
[Medium]      Insecure services     Security     Host     Check for insecure services
[Medium]      DBSNMP privileges     Security     Database     Check that DBSNMP account has sufficient privileges to conduct all security tests
[Medium]      Remote password file     Security     Database     Check for insecure authentication of remote users (remote password file)
[Medium]      Default passwords     Security     Database     Test for known accounts having default passwords
[Medium]      Unlimited login attempts     Security     Database     Check for limits on the number of failed logging attempts
[Medium]      Web Cache Writable files     Security     Web Cache     Check that there are no group or world writable files in the Document Root directory.
[Medium]      HTTP Server Writable files     Security     HTTP Server     Check that there are no group or world writable files in the Document Root directory
[Medium]      Excessive PUBLIC EXECUTE privileges     Security     Database     Check for PUBLIC having EXECUTE privileges on powerful packages
[Medium]      SYSTEM privileges to PUBLIC     Security     Database     Check for SYSTEM privileges granted to PUBLIC
[Medium]      Well-known accounts     Security     Database     Test for accessibility of well-known accounts
[Medium]      Execute Stack     Security     Host     Check for OS config parameter which enables execution of code on the user stack
[Medium]      Use of Unlimited Autoextension     Storage     Database     Checks for tablespaces with at least one datafile whose size is unlimited
[Informational]      Force Logging Disabled     Configuration     Database     When Data Guard Broker is being used, checks primary database for disabled force logging
[Informational]      Not Using Spfile     Configuration     Database     Checks for spfile not being used
[Informational]      Use of Non-Standard Initialization Parameters     Configuration     Database     Checks for use of non-standard initialization parameters
[Informational]      Flash Recovery Area Location Not Set     Configuration     Database     Checks for flash recovery area not set
[Informational]      Installation of JAccelerator (NCOMP)     Installation     Database     Checks for installation of JAccelerator (NCOMP) that improves Java Virtual Machine performance by running natively compiled (NCOMP) classes
[Informational]      Listener logging status     Security     Listener     Test for logging status of listener instances
[Informational]      Non-uniform Default Extent Size     Storage     Database     Checks for tablespaces with non-uniform default extent size
[Informational]      Not Using Undo Space Management     Storage     Database     Checks for undo space management not being used
[Informational]      Users with Permanent Tablespace as Temporary Tablespace     Storage     Database     Checks for users using a permanent tablespace as the temporary tablespace
[Informational]      Rollback in SYSTEM Tablespace     Storage     Database     Checks for rollback segments in SYSTEM tablespace
[Informational]      Non-System Data Segments in System Tablespaces     Storage     Database     Checks for data segments owned by non-system users located in tablespaces SYSTEM and SYSAUX
[Informational]      Users with System Tablespace as Default Tablespace     Storage     Database     Checks for non-system users using SYSTEM or SYSAUX as the default tablespace
[Informational]      Dictionary Managed Tablespaces     Storage     Database     Checks for dictionary managed tablespaces (other than SYSTEM and SYSAUX)
[Informational]      Tablespaces Containing Rollback and Data Segments     Storage     Database     Checks for tablespaces containing both rollback (other than SYSTEM) and data segments
[Informational]      Segments with Extent Growth Policy Violation     Storage     Database     Checks for segments in dictionary managed tablespaces (other than SYSTEM and SYSAUX) having irregular extent sizes and/or non-zero Percent Increase settings

Interresting is revoking UTL_FILE from public, which is critical. Also revoke UTL_TCP and UTL_SMTP. This is going to upset an expert I know...Okay, as this is (I think) aimed at me, I'll fall for it ;)
What is the point of revoking UTL_FILE from PUBLIC? Yes I know what you think the point is, but without rights on an Oracle DIRECTORY being able to execute UTL_FILE is useless. Unless of course you're still using the init.ora parameter
UTL_FILE_DIR=*which I sincerely hope you're not.
As for UTL_SMTP and UTL_TCP, I think whether a program is allowed to send e-mail to a given SMTP server is really in the remit of the e-mail adminstrator rather than the DBA.
Look, DBAs are kings of their realm and can set their own rules. The rest of us have to live with them. A couple of years ago I worked a project where I was not allowed access to the USER_DUMP_DEST directory. So every time I generated a TRC file I had to phone up the DBA and a couple of hours later I got an e-mail with an attachment. Secure yes, but not very productive when I was trying to debug a Row Level Security implementation.
I have worked on both sides of the DBA/Developer fence and I understand both sides of the argument. I think it is important for developers to document all the privileges necessary to make their app run. Maybe you don't have a better way of doing that than revoking privileges from PUBLIC. Or maybe you just want to generate additional communication with developers. That's fine. I know sometimes even DBAs get lonely.
Cheers, APC

How to contact a live person about resetting my security questions. The link to send email doesn't work.

I need to contact a live person about resetting my security questions. The link to send an email, doesn't send an email even though the email address it's supposed to be sent to is verified and works. (It can receive other email).

Hello DogTrainer63,
Click on the first link below to find the number that you need to contact Apple to help sort you out. I have also provided an article that may help if you have not received that email to reset the questions.
Contact Apple for support and service
http://support.apple.com/en-us/HT201232
If you didn't receive your Apple ID verification or reset email
http://support.apple.com/en-us/HT201455
Regards,
-Norm G.

What about the security we support when the BIA is not SSO with EBS

For the following security mode, if all of them need the SSO with EBS?
Operating Unit-Based Security for Oracle EBS
Inventory Org-Based Security for Oracle EBS
Ledger-Based Security for Oracle EBS
Business Group Org-Based Security for Oracle EBS
HR Org-Based Security for Oracle EBS
Human Resource Personnel Data Analyst Security for Oracle EBS
Employee-Based Security for Oracle EBS

well you could do the security in OBIEE as well, but why shouldn't you use SSO?

I got chagred 1 USD while created AppleID .. Why ??.. I am worry about the security ... is this safe ..or should I raise this issue to my credit card bank ??

I got chagred 1 USD while created AppleID .. Why ??.. I am worry about the security ... is this safe ..or should I raise this issue to my credit card bank ??

Relax. This is completely normal and is not unusual at all.
It will be reversed.
Read the following.
iTunes Store & Mac App Store: About credit-card authorization holds

About the OBIEE Security

Similar Messages

Maybe you are looking for