Data Security in Oracle 8i
I wish know if oracle8i provide security to data level?.
How work and how implementation?.
Thanks you for help me.
<BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:</font><HR>Originally posted by [email protected] ():
What do you mean by data level security?
Can you give an example and explain your query?<HR></BLOCKQUOTE>
When giving him permissions to users on a table I want that the user can manipulate only certain columns and that the others are restricted for him. If it is connected by application, SQL, ODBC, etc. That it always has activates the restrictions on the data of those columns.
Ej.
I have a table with 5 columns, need to give permissions him of select to users on that table but single desire to show the users columns to him the 1,2 and 3.Las others will remain restricted for those users until it is decided to assign them.
Similar Messages
-
Is it possible to perform network data encryption between Oracle 11g databases without the advance security option?
We are not licensed for the Oracle Advanced Security Option and I have been tasked to use Oracle Network Data Encryption in order to encryption network traffic between Oracle instances that reside on remote servers. From what I have read and my prior understanding this is not possible without ASO. Can someone confirm or disprove my research, thanks.Hi, Srini Chavali-Oracle
As for http://www.oracle.com/technetwork/database/options/advanced-security/advanced-security-ds-12c-1898873.pdf?ssSourceSiteId… ASO is mentioned as TDE and Redacting Sensitive Data to Display. Network encryption is excluded.
As for Network Encryption - Oracle FAQ (of course this is not Oracle official) "Since June 2013, Net Encryption is now licensed with Oracle Enterprise Edition and doesn't require Oracle Advanced Security Option." Could you clarify this? Thanks. -
Oracle BI (Siebel Analytics) / Data Warehouse Data Security
Hello,
We are implementing Oracle Siebel Analytics and Custom datawarehousing using Oracle 9i DB. I am interested to know if we can implement consistent data security model for different data marts. Means with one single data warehouse, I want to implement data security model or policies in one place and they are applied consistently across all of the datamarts.
1. Can we or oracle support this kind of secinerio.
2. If yes, what would be perfect model an example will be helpful, and if not what best approach is available to resolve this security model.
Any suggestion or help would be great.
Regards
GirishHi, Do you also get some other packages names that the error msg reports like ...
RPE-01012 Cannot deploy PL/SQL maps to the target schema because it is not owned by the Control Center and "SOME WRT.... package names" I think once did I face this and made sure that the repository user has some packages granted through OWBREPOS_OWNER/OWB_REPOS_OWNER to the user you are using to run the mapping.
Regards,
Mohammad Farhan Alam -
Data security for multiple data sources
Dear BO guru's,
I am struggling with a brainbraker on authorizations on Universes since quite some time.
I am not a BO guru so hopefully someone can help me with this.
I (more or less) know the concept of data security in BO: users can be restricted on data level in (mainly) two ways:
1) with roles in CMC and with restrictions in Universe Designer.
OR
2) with a DB table that contains all authorized values per user and per field (i.e. John can see data for country UK)
The first is easy to set up, but hard to maintain.
The second is difficult to set up, but very flexible.
Now here is the problem...
Supporse your BO server is connected to different source systems (i.e. an SQL server, an Oracle server...) and you want only one universe to get data from all systems at the same time and display it in one report.
If I am not mistaken, this means we need a data federator.
...My questions:
1) Is there a possibility to do this without a data federator (but still have one universe to build my report or dashboard on)?
2) Where do I keep the table with authorizations for the users? Is that a database of the BO Enterprise server, a seperate data base, or in a table of one of the source systems (SQL, Oracle...)?
As this questions keeps me busy since long time, I would be very grateful to have your help.
It seems hard to find information on this.
Thanks a lot in advance!
UniverseDummy1) Is there a possibility to do this without a data federator (but still have one universe to build my report or dashboard on)?
Apart from the Data Federator, you can either use an ETL tool to load your data into a single Datawarehouse or wait until XI 4.0
2) Where do I keep the table with authorizations for the users? Is that a database of the BO Enterprise server, a seperate data base, or in a table of one of the source systems (SQL, Oracle...)?
If you are going to use the Data Federator then you can create the table in one of your source systems and add it as a data source in your DF project.
Regards,
Stratos -
OBIEE-EBS data security integration
Hi all,
I am trying to implement the HR-Org based data security in EBS-OBIEE integration.
After creating the initialization blocks EBS Single Sign-on Integration,Get Oracle EBS Security Context,Group-EBS Responsibility I have created a new initialization block HR Organizations to populate the session variable "HR_ORG" and I am using the following the query.
Even though the session variables GROUP and USER are getting their values correctly and integration works fine, the variable HR_ORG says "has no value definition".
[nQSError: 10058] A general error has occurred. [nQSError: 23006] The session variable, NQ_SESSION.HR_ORG, has no value definition. (HY000)
SQL Issued: SELECT "Per Business Groups"."Business Group Id", VALUEOF(NQ_SESSION.HR_ORG) FROM HR
Please help me for implementing the data security after the EBS-OBIEE integration..
For populating HR_ORG variable by row wise initialization:
SELECT DISTINCT 'HR_ORG',TO_CHAR(SEC_DET.ORGANIZATION_ID)
FROM
SELECT
'HR_ORG', ASG.ORGANIZATION_ID
FROM
FND_USER_RESP_GROUPS URP
,FND_USER USR
,PER_SECURITY_PROFILES PSEC
,PER_PERSON_LIST PER
,PER_ALL_ASSIGNMENTS_F ASG
WHERE
URP.START_DATE < TRUNC(SYSDATE)
AND (CASE WHEN URP.END_DATE IS NULL THEN TRUNC(SYSDATE) ELSE TO_DATE(URP.END_DATE) END) >= TRUNC(SYSDATE)
AND USR.USER_NAME = ':USER'
AND USR.USER_ID = URP.USER_ID
AND TRUNC(SYSDATE)
BETWEEN URP.START_DATE AND NVL(URP.END_DATE, HR_GENERAL.END_OF_TIME)
AND PSEC.SECURITY_PROFILE_ID = FND_PROFILE.VALUE_SPECIFIC('PER_SECURITY_PROFILE_ID', URP.USER_ID, URP.RESPONSIBILITY_ID, URP.RESPONSIBILITY_APPLICATION_ID)
AND PER.SECURITY_PROFILE_ID = PSEC.SECURITY_PROFILE_ID
AND PER.PERSON_ID = ASG.PERSON_ID
AND TRUNC(SYSDATE) BETWEEN ASG.EFFECTIVE_START_DATE AND ASG.EFFECTIVE_END_DATE
AND URP.RESPONSIBILITY_ID = DECODE(FND_GLOBAL.RESP_ID,
-1, URP.RESPONSIBILITY_ID,
NULL, URP.RESPONSIBILITY_ID,
FND_GLOBAL.RESP_ID)
UNION
SELECT DISTINCT 'HR_ORG',
ORGANIZATION_ID
FROM PER_ALL_ASSIGNMENTS_F ASG,
FND_USER USR
WHERE ASG.PERSON_ID = USR.EMPLOYEE_ID
AND USR.USER_NAME = ':USER'
AND TRUNC(SYSDATE) BETWEEN ASG.EFFECTIVE_START_DATE AND ASG.EFFECTIVE_END_DATE
AND ASG.PRIMARY_FLAG = 'Y'
) SEC_DET
Thx!Duplicate post see Re: obiee-ebs data security integration
-
Using Data Security under Functional Developer / User Manager
Has anyone succesfully carried out any Data Security policies in Oracle Apps. I would like to get details on this.
Thanks in advance.Actually the other scripts on the http://www.petefinnigan.com/tools.htm site seem to do the trick where you can check for who has DBA and who has SELECT ANY TABLE.
The next questions is .... what other privs should I be concerned with? Just want to make sure I am checking for all possibilities of access to a particular object. -
Getting error when i am creating and tesing data server in oracle (Physical
Hi,
Getting error when i am creating and tesing data server in oracle (Physical Architecture) in topology manager.
Please anybody help me on this.
Java.net.ConnectException: Connection refused: connect
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
at java.net.Socket.connect(Socket.java:529)
at java.net.Socket.connect(Socket.java:478)
at java.net.Socket.<init>(Socket.java:375)
at java.net.Socket.<init>(Socket.java:189)
at com.sunopsis.graphical.l.pm.a(pm.java)
at com.sunopsis.graphical.l.pm.s(pm.java)
at com.sunopsis.graphical.l.pm.g(pm.java)
at com.sunopsis.graphical.l.pm.a(pm.java)
at com.sunopsis.graphical.l.pm.a(pm.java)
at com.sunopsis.graphical.l.iz.actionPerformed(iz.java)
at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1995)
at javax.swing.AbstractButton$Handler.actionPerformed(AbstractButton.java:2318)
at javax.swing.DefaultButtonModel.fireActionPerformed(DefaultButtonModel.java:387)
at javax.swing.DefaultButtonModel.setPressed(DefaultButtonModel.java:242)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(BasicButtonListener.java:236)
at java.awt.Component.processMouseEvent(Component.java:6263)
at javax.swing.JComponent.processMouseEvent(JComponent.java:3267)
at java.awt.Component.processEvent(Component.java:6028)
at java.awt.Container.processEvent(Container.java:2041)
at java.awt.Component.dispatchEventImpl(Component.java:4630)
at java.awt.Container.dispatchEventImpl(Container.java:2099)
at java.awt.Component.dispatchEvent(Component.java:4460)
at java.awt.LightweightDispatcher.retargetMouseEvent(Container.java:4574)
at java.awt.LightweightDispatcher.processMouseEvent(Container.java:4238)
at java.awt.LightweightDispatcher.dispatchEvent(Container.java:4168)
at java.awt.Container.dispatchEventImpl(Container.java:2085)
at java.awt.Window.dispatchEventImpl(Window.java:2478)
at java.awt.Component.dispatchEvent(Component.java:4460)
at java.awt.EventQueue.dispatchEvent(EventQueue.java:599)
at java.awt.EventDispatchThread.pumpOneEventForFilters(EventDispatchThread.java:269)
at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:184)
at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:178)
at java.awt.Dialog$1.run(Dialog.java:1046)
at java.awt.Dialog$3.run(Dialog.java:1098)
at java.security.AccessController.doPrivileged(Native Method)
at java.awt.Dialog.show(Dialog.java:1096)
at java.awt.Component.show(Component.java:1563)
at java.awt.Component.setVisible(Component.java:1515)
at java.awt.Window.setVisible(Window.java:842)
at java.awt.Dialog.setVisible(Dialog.java:986)
at com.sunopsis.graphical.l.pm.q(pm.java)
at com.sunopsis.graphical.l.pm.<init>(pm.java)
at com.sunopsis.graphical.frame.b.jh.bx(jh.java)
at com.sunopsis.graphical.frame.bo.w(bo.java)
at com.sunopsis.graphical.frame.bo.d(bo.java)
at com.sunopsis.graphical.frame.w.actionPerformed(w.java)
at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1995)
at javax.swing.AbstractButton$Handler.actionPerformed(AbstractButton.java:2318)
at javax.swing.DefaultButtonModel.fireActionPerformed(DefaultButtonModel.java:387)
at javax.swing.DefaultButtonModel.setPressed(DefaultButtonModel.java:242)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(BasicButtonListener.java:236)
at java.awt.Component.processMouseEvent(Component.java:6263)
at javax.swing.JComponent.processMouseEvent(JComponent.java:3267)
at java.awt.Component.processEvent(Component.java:6028)
at java.awt.Container.processEvent(Container.java:2041)
at java.awt.Component.dispatchEventImpl(Component.java:4630)
at java.awt.Container.dispatchEventImpl(Container.java:2099)
at java.awt.Component.dispatchEvent(Component.java:4460)
at java.awt.LightweightDispatcher.retargetMouseEvent(Container.java:4574)
at java.awt.LightweightDispatcher.processMouseEvent(Container.java:4238)
at java.awt.LightweightDispatcher.dispatchEvent(Container.java:4168)
at java.awt.Container.dispatchEventImpl(Container.java:2085)
at java.awt.Window.dispatchEventImpl(Window.java:2478)
at java.awt.Component.dispatchEvent(Component.java:4460)
at java.awt.EventQueue.dispatchEvent(EventQueue.java:599)
at java.awt.EventDispatchThread.pumpOneEventForFilters(EventDispatchThread.java:269)
at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:184)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:174)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:169)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:161)
at java.awt.EventDispatchThread.run(EventDispatchThread.java:122)HI,
check the jdbc url.
The datbase and the listener to which you are connecting are suppose to be up and running.
For testing try and connect using sqlplus from the machine you are trying to make a connection,
Reshma -
Hi,
I wanna ask about "Data Security in Sys admin", how it can be done (setup)?
ThanxI assume that you have studied the Oracle System Administrators Guide for your version of oracle apps on docs.oracle.com???
The pearls of wisdom that you seek are hidden in the treasures of that manual!
hohoho, iguru -
UMX - Can I setup Data Security in UMX similar to Security Rules?
Hi;
Is it possible to setup something similar to Security Rules in UMX? I would like to grant the same Role to different users, and assign these users different security. All my reading of UMX so far has pointed me to creating objects and granting security permissions, but I don't know how to go about implement it. If one of you has successfully implemented this, can you please share your steps?
Thanks, AlHi Al,
restricting FND... Tables is maybe not the best idea. You should always use standard functionality to achieve the same (if available).
1/ Is your request related to an Oracle Standard Form, if yes, which one?
2/ Do you talk about the GL Code Combination? Would you like to restrict a value from this segment?
3/ Data Security is a very low level technique, if you use it, such a person where the rule is enabled can never and nowhere see "removed" lines (values). Not in other forms, not in reports, not in interfaces or concurrent requests. So if you use it, be very careful.
Please send your email address to me, my one you can get by clicking on my name.
Thanks
Volker -
UMX for modules that do not support data security policies
Hi,
I am trying to set up UMX (including function and data security) for Purchasing. Oracle Support states that Purchasing has not adopted data security in their UIs. Is there a way to create my own own objects and instance sets? For example, User A can only see POs that begin with '5' and User B can only see POs that begin with '6'.
Any help with how the integration between UMX and the core apps would help.
Thanks!948210 wrote:
Hi,
I am trying to set up UMX (including function and data security) for Purchasing. Oracle Support states that Purchasing has not adopted data security in their UIs. Is there a way to create my own own objects and instance sets? For example, User A can only see POs that begin with '5' and User B can only see POs that begin with '6'.
Any help with how the integration between UMX and the core apps would help.
Thanks!Have you checked "Oracle E-Business Suite System Administrator's Guide - Security" manual?
R12 -- http://docs.oracle.com/cd/E18727_01/doc.121/e12843/toc.htm
11i -- http://docs.oracle.com/cd/B25516_18/current/acrobat/115sasg.pdf
Thanks,
Hussein -
Doubtful about security of oracle's Wrap code!
Dears
I am little bit doubtful about security of oracle's own Wrap code like package "sys.utl_smtp" .
Someone can easily Unwrap it without source code?
How it possible? whats your opinion about this? please can anybody clear me.
Regards
Abdul Halim
Edited by: Abdul Halim on May 31, 2013 8:14 PMHalm, you are operating under the mistaken belief that your code deserves hiding from the customer and competitors to begin with. Why? All you are doing in the code is performing DML. It is not like your application is the only one in the world that performs its function.
If someone really wanted to they could figure out what your code is basically doing just by looking at the table and file data before and after running the code. By careful manipulation of the data and studying the results they can figure out what is being done and then develop their own specific of the how it is done. One can also look at Oracle's internals as the code is being processed both using Oracle provided views and direct peaking at Oracle's shared memory. Then there are tools like sql trace which will captute the SQL, waits, and binds for the process.
But all of this is kind of mute in that most shops do not have the talent to write their own unwrapper nor has the shop purchased an unwrapper so if you wrap the code it is going to be secured from most users and competitiors. I would just recommend that potential customers not purchase your product becuase the customer is going to need access to the code either for debugging (bugs will exist in the code) or tuning. Likely both.
IMHO -- Mark D Powell -- -
User Data Security through forms.
Hi All,
I am working on a forms(10g) which once deployed in application env. will have different level of accesses to different users , like view,edit,etc.
could you please let me how to set up this user data security ,and access levels ...
Is this to be done through forms development , or any environmental setups required?
Any quick pointers in this regard are highlu appreciated.
Thnaks.Hi,
you can define your user level on oracle form,but these user only work on form level not on database level direct,you can make a proper setup form or role form to provide access to different user but you must mentioned these security on each transactional form.You also make a global procedure as security which maintain security only on form.Hope it'll helpful for you.
Thanks
Baloch. -
OBIA - HR Personal Data security
Hello,
Has anyone implemented Human Resource Personnel Data Analyst Security for Oracle EBS in OBIA 7.9.6.3 .?
Looking for some information on setting up Responsibilities in EBS and setup roles in EM for this OOTB security.
Please advise.
Thanks,
VidyaSIt's my first question, thanks for you help!
The test Source Code:
data:v_UMBER LIKE BAPIP0002-PERNR,
v_SUBTYPE LIKE BAPIP0002-SUBTY,
v_OBJECTID LIKE BAPIP0002-OBJPS,
v_LOCK LIKE BAPIP0002-SPRPS,
v_VALID LIKE BAPIP0002-BEGDA,
v_TYEND LIKE BAPIP0002-ENDDA,
v_RECOR LIKE BAPIP0002-SEQNR,
v_NAME1 LIKE BAPIP0002-VORNA,
v_NAME2 LIKE BAPIP0002-NACHN,
it_return like BAPIRETURN1 occurs 0 with header line.
select single PERNR SUBTY OBJPS SPRPS
BEGDA ENDDA SEQNR
into (v_UMBER,v_SUBTYPE,v_OBJECTID,
v_LOCK,v_VALID, v_TYEND,v_RECOR)
from PA0002
where PERNR = '00000003'.
v_NAME1 = 'TestLastName'. v_NAME2 = 'TestFirsName'.
CALL FUNCTION 'BAPI_PERSDATA_CHANGE'
EXPORTING
EMPLOYEENUMBER = v_UMBER
SUBTYPE = v_SUBTYPE
OBJECTID = v_OBJECTID
LOCKINDICATOR = v_LOCK
VALIDITYBEGIN = v_VALID
VALIDITYEND = v_TYEND
RECORDNUMBER = v_RECOR
FORMOFADDRESS =
FIRSTNAME = v_NAME1
LASTNAME = v_NAME2
IMPORTING
RETURN = it_return.
But it does not work. -
How to install Oracle Label Security in Oracle Database 10g EE
Hello All
I just want to know how to install Oracle Label Security in Oracle 10g Database EE.
I read in Oracle Enterprise Manager Grid Control Installation and Basic Configuration that Label Security must be installed before installing Enterprise Manager Grid Control.
I have Oracle Database 10g Release 1 (10.1.0.1) on my Windows XP System, and I patch it to 10.1.0.3.
M.
Sorry about my English.Options is to connect to Oracle Policy Manager or use Oracle Internet Directory (OID)to administer Oracle Label Security.
Find more ways in the Documentation here:
http://download-uk.oracle.com/docs/cd/B19306_01/network.102/b14267/toc.htm -
Problem with date format from Oracle DB
Hi,
I am facing a problem with date fields from Oracle DB sources. The date format of the field in DB table is 'Date base type is DATE and DDIC type is DATS'.
I mapped the date fields to Date characters in BI. Now the data that comes to PSA is in weird format. It shows like -0.PR.09-A
I have changing the field settings in DataSource to internal and external and also i have tried mapping these date fields to text fields with out luck. All delivers the same format.
I have also tried using conversion routines like, CONVERSION_EXIT_IDATE_INPUT to change format. It also delivers me the same old result.
If anybody of you have any suggestions or if anybody have you experienced such probelms, Please share your experience with me.
Thanks in advance.
Regards
VaradaThanks for all your reply. I can only the solutions creating view in database. I want some solution to be done in BI. I appreciate if some of you have idea in it.
The issue again in detail
I am facing an issue with date fields from oracle data. The data that is sent from Oracle is in the format is -0.AR.04-M. I am able to convert this date in BI with conversion routine in BI into format 04-MAR-0.
The problem is, I am getting data of length 10 (Output format) in the format -0.AR.04-M where the month is not in numericals. Since it is in text it is taking one character spacing more.
I have tried in different ways to convert and increased the length in BI, the result is same. I am wondering if we can change the date format in database.
I am in puzzle with the this date format. I have checked other Oracle DB connections data for date fields in BI, they get data in the format 20.081.031 which will allow to convert this in BI. Only from the system i am trying creating a problem.
Regards
Varada
Maybe you are looking for
-
HT4623 my iphone 5 is frozen from updating ios 8.1.1 what do i do
my iphone 5 is frozen from updating ios 8.1.1 what do i do
-
TACACS+ configured on router and router is in ACS. I can ping the ACS but the router cannot establish a connection to authenticate users. aaa group server tacacs+ hq_acs-1 server 10.20.17.2 ip tacacs source-interface GigabitEthernet0/0 aaa authenti
-
Lightroom 2.6 license fails
I have been using Lightroom from version 1. I upgraded to version 2 when it came out and have been updating to minor releases all along up to v2.5. My OS and machine through this time was Windows XP on and HP workstation. Recently I 'upgraded' to Win
-
Created/Updated User in Apex 4.0 does not match valid application users
We are working on a new install of Apex 4.0 - new application and seeing some odd values on the page details. For many of the first pages in the application (1-20 and 101), click to get Page Attributes then the Name tab. The yellow box on the bottom
-
Dont show fields with same value as previous row.
Hi, If I have a table like this: DEPNO_MONTH__COST__ID 10_____ Jan______100___ 2 10_____ Jan______200___ 4 10_____ Jan_______50____3 20_____ Feb______30____4 30_____ Jan ______30____5 30_____ Feb______40____6 I need a select that shows the table like