BPC Security - bulk upgrade

Hello Experts,
I need to implement a new security model for our BPC application and was curious if anyone have done mass rollouts from a backend. i.e. using BPC stored procedures instead of front end.
Specifically, i am looking for the following tasks:
- Delete a member access profile
- Add a member access profile
- Delete user
- Add user
Thanks in advance,
Akim

Traced deletion of profiles/user T-SQL. Adding profiles/users manually - not worse scripting.

Similar Messages

  • BPC security can be used in SQL Reporting Services?

    Hello,
    We are trying to implement SQL Reporting Services(RS) as web reports of BPC.
    Is it possible to use BPC security user access control in SQL RS?
    We know that SQL RS user access can be managed by windows domain, but we like to use BPC security as SQL RS user control.
    Thank you in advance.
    Sam

    Hello,
    We are trying to implement SQL Reporting Services(RS) as web reports of BPC.
    Is it possible to use BPC security user access control in SQL RS?
    We know that SQL RS user access can be managed by windows domain, but we like to use BPC security as SQL RS user control.
    Thank you in advance.
    Sam
    ==================================================================
    Hi Sam,
    Could you be more specific on what you are going to do with RS?
    BPC, as you know, uses Windows AD. If you intend to use RS in BPC, you have already introduced Windows AD and BPC access security for RS.  But only given RS report is eligible in this case.
    If you want to make a report that refers to business data of BPC, and need to pass argument as query parameter such as what category, what entity, not possible actaully, no way to make it happen with standard feature of BPC. But you can think of possibility of customizing and need to find out how to pass the argument for a user(read ACS table containing security info).
    Reg. the reporting tool, if you are using 7.5, BO products is aligned well. Xcelsius and Voyager will be a tool for your requirement.
    Regards,
    YH Seo

  • How to add "Team leader" field in standard BPC security report

    BPC Expert,
    We are using BPC MS 5.0 version.
    There is a checkbox in the security setup to make someone a "Team Leader" when you add him/her to a team and this checkbox determines who can post data and who cannot.  When we run the user report we see which team the user is in but we do not have visibility to whether or not they are a "Team Leader" which is what business owner needs to see to approve user access.
    I figured out "dbo.userteamassign" is the table which hold team leader value. Can anyone please tell me all the steps of adding team leader field in the standard BPC 5.0 security report.
    Thanks,
    Ketan

    Roberto,
    Thanks for the response. I know associated steps to declare business user as a team leader but my original question is "how to add a column in standard BPC security report that says who is team leader or who is not".
    Do you know the Dtx package that is responsible to supply the data to Standard BPC security report? We can enhance standard data package to pull/display extra "Team leader" column in standard security report.
    Appreciate your inputs.
    Thanks,
    Ketan

  • Dead links after BPC 10.1 upgrade

    After upgrading to BPC 10.1 we have this strange issue where after you log into the BPC web front end and you click on various links and nothing happens.  For example if you navigate to Administration section (as shown below) and click on the blue links none of them launch.  Happen in all of the tabs and sections. We have followed the install guide to the best of our ability and activated all of the correct services in SICF.  Happens in all browsers.  We are running classic mode if it makes any difference.
    Any help would be appreciated.  Thanks in advance

    Hello Charlie,
    there are no dumps and there is no HTTP traffic because the links on the web page point to nowhere.
    We are on the SP you wrote, these are all the SW levels on our system, are there any mismatch among them or missing Add-Ons ?
    SAP_BASIS    740    0007
    SAP_ABA    740    0007
    SAP_GWFND    740    0007
    SAP_UI    740    0009
    PI_BASIS    740    0007
    ST-PI    2008_1_710    0009
    BI_CONT    757    0002
    SAP_BW    740    0007
    CPMBPC    810    0002
    POASBC    100_731    0005
    HANABPC    810    0002
    ST-A/PI    01Q_731    0002
    Using Firefox if we go in the section Administration, Security, right click on Users and select Inspect Element, this is the content of the inspector, is the href correct?
    <a id="home-view-admin-users" data-sap-ui="home-view-admin-users" class="sapUiLnk" title="Add users to the environment and manage their access rights." href="javascript:void(0);" tabindex="0">Users</a>
    Best regards,
    Valerio

  • Question regarding export and import of Hyperion Security during upgrade

    Hi Guys,
    We are upgrading Essbase, Integration Services from 7x to 9x which are utilizing Hyperion Hub and we are going to follow the method of uninstalling 7x and reinstalling 9x components.
    Now my question is, what is the best way of transferring security from 7x to 9x. I heard that Advanced Security Manager can be used to export and import back security. Or is there any
    other way of doing it??
    Can someone please enlighten me on this.
    Thanks in advance
    K

    Ihatelightroom wrote:
    First let me say that any software that comes without a save button should be sold with a warning label.
    Why?
    Question 1:  I have having an issue comprehending how to save a photo.  In my case  I select the photo, zoom in on the subject, export it to my desktop. The pciture on my desktop does not incorporate the change. Am I missing a step? What do I need to do to export it with this change? I actually watched a You Tube video on this and could not see what i was not doing.
    You must have selected the wrong option in the Export dialog box. Under "File Settings", you need to select JPG and not "Original". Of course, you probably need to do some additional viewing of videos (or some reading) to learn that most people's workflow does not automatically include a "Save" or "Export" after editing the photo. It's not a necessary part of Lightroom's workflow, unless you need the photo for some non-Lightroom activity.
    Question 2: I just installed Lightroom and am trying to import my 12k strong photo collection. The Import button pulls in about 2k and then cannot find anymore. The photos are stored in folders by date within a master folder. I am selecting the master folder. I can go in and import the sub-fodler individually. However i do not want to do that 200 times.There is no apparent way to go into the subfolder level and select more than one folder.
    In the Import dialog box, on the left, under "Source", there is a checkbox that says "Include SubFolders". Make sure this is checked.
    Seriously, you need to spend some time reading introductory material about LR because Lightroom does not work like any other photographic software you might have used in the past. You are handling it as if it was no different than standard photo editing software, and you are going to be frustrated if that is your mindset. See the videos at adobe.tv and read this: http://www.flickr.com/groups/adobe_lightroom/discuss/72157603590978170/

  • SAP BPC 7.5 to BPC 10.0 upgrade, problem CPMBPC_800

    Hello,
    We are currently upgrading BPC 7.5 to BPC 10.0. We want to do an upgrade of our existing BPC 7.5, and not an 'clean' installation of BPC 10.0.
    Right now we are having some issues with the´basis part of the upgrade.
    We have installed the POASBC 100_730 SP01 (POASBC ABAP component) with no problems
    and now we want to install the EPM content in the download package 51040691 (Server components).
    In the download package 51040691 - there are two folders 'upgrade' and 'installation'
    The files have been uploaded into SAP BW 7.3 and the problem now is in 'saint' - we can see the CPMBPC_800 package, but the type is 'INSTALLATION' and there is not an option to choose 'UPGRADE'
    Is 'INSTALLATION' the same as a clean installation - or will the package detect the existing SAP BPC 7.5 and do upgrade instead of an installation ?
    All help is appreciated
    Thank you,

    Hello,
    we are facing the same issue. Did somebody solve this problem? Is INSTALLTION the same as UPGRADE?
    Kind Regards
    Waldemar Brill

  • BPC 7.5 upgrade process - Doubts

    Hi,
    Once we had the confirmation and approval to upgrade the system from SP00 to SP03 (on .NET server components), we noticed that some functional configurations had been made in the meantime. This new scenario where new things had been done from a functional perspective makes me wonder if any of that configuration could be lost while or after upgrading the server component?
    Also, after reading Note 1453797 - Planning and Consolidation 7.5 SP03 NW Central Note, section "Before you install" to be more specific it says to uninstall any previous version of the .NET server and client components. Also Scott recommended me that as a best practice. This applies when the upgrade is being done from BPC 7.0 to BPC 7.5 for example or it also applies to my case (uprading BPC 7.5 system from SP00 to SP03)?
    Thanks again for your help.
    Regards

    Hi Ethan,
    Thanks for the quick response.
    Actually I'm new installing BO BPC and maybe I've not used the correct words to describe that configuration I've detected while trying to install SP03. What I've noticed is that an Initial Application Set has been created. Actually, this is the only thing I have found but I'm not sure if that imply any other configurations either in .NET server or ABAP server that could be lost after upgrading the server component from SP00 to SP03. The same question arises if I decide to uninstall the current installation to perform a fresh one using SP03 directly as its described in note 1453797.
    In summary, is there any chance to lost the configuration made on a BPC system (.NET and ABAP servers or client) if any of the above upgrade process is performed?
    Hope being clear enough this time thanks so much for your help.
    Kind regards

  • Critical Acrobat 9.1 Security Fix & Upgrade

    There have been stories in the past few weeks about a critical JavaScript Buffer Overrun Attack in Acrobat and Adobe Reader. Adobe has now posted a critical security patch for current versions of Acrobat 9 and Adobe Reader 9.
    http://www.adobe.com/support/security/bulletins/apsb09-03.html
    The security bulletin reports:
    Adobe recommends users of Adobe Reader and Acrobat 9 update to Adobe Reader 9.1 and Acrobat 9.1. Adobe is planning to make available updates for Adobe Reader 7 and 8, and Acrobat 7 and 8, by March 18.
    Its highly recommended that you update all your copies of these applications. There are also other bug fixes in the 9.1 upgrade. Here are the release notes:
    http://kb.adobe.com/selfservice/viewContent.do?externalId=kb408814&sliceId=2

    I had something occur that wasn't in the instructions. It's probably no big deal, but thought I'd mention it here:
    After downloading the patch, I launched the .dmg file and was asked the following:
    Please choose the copy of Adobe Acrobat Pro to update.
    Below in the finder window it showed Adobe Acrobat Pro.app, Acrobat Uninstaller.app, and Acrobat Distiller.app.
    Now, I chose the first one; that makes sense to me. But now I do have a nagging question in my mind as to whether I also need to apply the patch to the other two apps. Does anyone know? I'm assuming "no," but you know what that say about assuming! :-)
    Thanks!
    Keith

  • BPC Security Migration

    I'm wondering how people migrate security between environments i.e. production to development.
    Security is typically quite different in development vs. production.  Some users will have more access in development and some users will not be active in development.  Also in some cases, users may have different id's because they are on different domains.  This means that there are many changes that need to be made before the development environment can be used.
    In version 4 of OutlookSoft, security was all contained within an Excel workbook which made it very easy to apply these types of changes very quickly.  For example, there was a column that indicated whether or not a user was active.  You could very quickly go through this column and change users from Yes to No.  Also, security could be processed all at one time.
    In BPC, there are many dialog boxes to go through which is time consuming.  There does not seem to be a way to flag a user as inactive.  I notice that the field still exists in the database table but it is not in the UI.  Also, it seems that each of the Task Profiles, Member Access Profiles, and Teams needs to be saved whenever an appset is restored or else you will get errors.  There does not seem to be a way to process the security so you do not have to visit each of these dialog boxes.
    Is anyone automating this type of migration by modifying the database tables directly instead of going through the UI?

    Furthermore, in the corporate environment we are in today (i.e. SOX, Enron, etc.), current customers would be very WEARY to implement a "workaround" (not endorsed by the vendor) to migrate security settings into a live production environment.
    I suggest you send an enhancement request via the SAP Support portal and ask that something like this be implemented in the next release of BPC.
    As a starter here are some security functions that I think should be automated via a menu option in the Security UI of BPC:
    Importing Security Information
    -Import ALL Security info.
    -ImportUsers
    -ImportUserGroupNames
    -ImportUserGroupMembers
    -ImportPrivileges
    Exporting Security Information
    -Export ALL Security info.
    -ExportUsers
    -ExportUserGroupNames
    -ExportUserGroupMembers
    -ExportPrivileges
    Deleting Security Information
    -DeleteUsers
    -DeleteUserGroups
    -DeleteUserGroupMembers
    -DeletePrivileges
    Regards,
    John

  • BPC Security: User should only see status of packages started by himself

    Dear Experts,
    we have the users run packages to perform their planning process and we also trained them to check their package status so they know when to go on within the process. Until now we have not had a very intelligent security management since it's only a pilot system with a few pilot countries. Everybody had full_tsk profile. But now it should get a llittle more restrictive. Very important in the first place is, that the user only sees his own package. If he can see other user's packages this would meen he can see copied values too within the protocol but thats very sensitive data.
    I cannot find a security setting that helps me here. Do you have any hints for me?
    Thanx in advance,
    regards,
    Cora

    Sorry to confirm that security does not limit the visibility to the individual DM logs.  There is a filter capability however that could be taught to your users.
    Please include your request on the BPC page at SAP Idea place.  See the top of this forum for more information.
    Best regards,
    [Jeffrey Holdeman|http://wiki.sdn.sap.com/wiki/display/profile/Jeffrey+Holdeman]
    SAP Labs, LLC
    BusinessObjects Division
    Americas Applications Regional Implementation Group (RIG)

  • Any way to exclude BPC security settings and profiles from backup/restore?

    We are on BPC 10 MS and restoring the PROD version to a DEV environment, but do not want to restore the security profiles.   Need to figure this out before new BPC development is sent back to PROD with same b/u restore process.  DEV security is different than PROD and we do not want the security profiles/settings in DEV to overlay PROD...

    Hi Mike,
    No automate process to maintain different set of users in both environments while restoring . Manually manage after refreshed based on required user profiles.
    Thanks,
    Vivek.

  • BPC 7.5 upgrade issue

    Hi Experts ,
    We have upgraded 7.0 to 7.5 sp04,but we ar having issue with installaing the client and logging in to BPC for Excel. When we install the BPC for Office client or the admin console
    Error  Message : "You do not have authority to install the Planning and
    Consolidation client"
    Then click NEXT  and continue instalaltion
    It appears everything installs,but  when we try to log in to the Admin console   or Ofice Client message occurs
    "The
    system cannot connect to the (http://bpctest.int.XXXX.com) application
    server"
    Please suggest
    Reagrds
    Prabhu

    Hello
    Prabhu
    We are trying to install the patch SP07 , upgrading from SP04.
    have u done a successfull patch with SP06 ?
    One suggestion for ur problem, if u have not done the upgrade Patch by Patch i.e SP03,SP04,SP05,SP06,SP07 i mean if not done cumulatively this could occur
    and donot ignore any prior warning or error messages that appear to continue. SAP has already asked to share the errors if any during the upgradation procedures
    Please let me know how have You solved this or working on
    every input is appreciated
    thanks
    Edited by: bpcbee on Apr 6, 2011 6:49 PM

  • BPC Security - Edit Logic Script

    Trying to find the security task that give edit access to Logic Script(BPC 10 NW SP9). Is this combined with the "Edit Packages" Data Manger task?
    Thank you.
    Regards,
    Vinod Swarnapuri

    Vinod,
    I think the one you are looking for is Manage Business Rules.
    Akos

  • BPC Service Pack Upgrade

    Hi -
    I am currently supporting BPC 7.5 NW on Service Pack 07.
    The Basis team on my project has confirmed that our sandbox environment for BPC is on SP13. However, when I log onto this environment, there is no prompt to install the upgrade, and it appears that I am still on SP07.
    Are there specific steps the Basis team should perform to enable the install prompt on the front end, and if so what are they?
    Also, assuming I am able to install SP13 for sandbox, will I be able to easily revert back to the older SP on the other environments?
    Thank you.

    Vadim,
    OK, I thinked that you have this information at your hand. How you say it. 
    I have been searching but I have not found it.
    Thanks a lot and sorry for the inconvenients.
    Regards
    Gustavo

  • Security Realms, upgrad right in group!

    Thank's for your help!
    Question about my Realm, in the Group operators and Group Adminstrator settings.
    I am trying to make my group Operator to access some particular pages of my admin
    console where only group administrator can execute some action.
    Upgrade the group operator rights in a particular page of my admin consol.
    I know that:
    Operators: can view and modify all resource attributes and perform server lifecycle operations.
    Administrators: can view and modify all resource attributes and start and stop servers.
    Exemple: I want to give to my group operator the possibility to stop and start the servers
    and in the same time i don`t want to add the group administrator to the operateur group.
    How can i do that!

    You can use JMX Policy Editor to achieve the same.. I mean if you want to give certain previledges to the the Operator which it doesnt have by default..
    http://download.oracle.com/docs/cd/E12839_01/apirefs.1111/e13952/taskhelp/security/DefinePoliciesforMBeans.html

Maybe you are looking for