Filter at universe level is not working

Similar Messages

• Item level security not working when placed in a portlet page

  I have three page links linking to separate pages and have two of them with item level security turned on for specific groups with view privilges. I have the access for those groups with view privilges in the page level as well. I have published that as portlet and placed the portlet in another page which has view priviliges for the groups specified in item level as well.
  But I notice that when i place the portlet in a page, the item level security is not working.
  Item Level Security Not Working for Items Placed on a page and published as portlet and placed in another page. Is there some work around for this.
  Thanks
  Valli

  Would you please clarify for me? Is the problem that unauthorized people can see the portlet, or that unauthorized people can see the links?

• How to create Current Year Filter at Universe Level ?

  Hi,
  I want to create a Current Year, Next Year and Last Year filters at Universe Level.
  Can anyone help me with this.
  I am using Netezza database and not able to find the appropriate date function in Netezza to accomplish this.
  Any suggestions ?
  Thanks

  Hi,
  You would somehow need to extract the Year part from the system date..
  then
  Current Year = Year
  Next Year would be i.e Current Year + 1
  Last Year would be i.e Current Year - 1
  I guess this is the simple part... but you would need to find those functions on your RDBMS..
  Hope this helps
  Jacques

• Customer Exit variable and Filter routine in DTP does not works?

  Hello Experts,
  Does anyone know what might be the possible reason - A customer exit variable working fine on the OLAP side does not work in a DTP??
  I have also tried to use the Filter routine, which does not give me the right results..I am trying to fetch a Fiscalyear period maintained in an infoObject as follows in my Filter routine..
  ata: sel_period like /BIC/PZPARAM-/BIC/ZPARAMVAL.
  DATA: zperiod type /BI0/OIFISCPER.
            SELECT SINGLE /BIC/ZPARAMVAL INTO sel_period
            FROM /BIC/PZPARAM
            WHERE /BIC/ZPARAM = 'ZPCA'
            AND objvers = 'A'.
            zperiod = sel_period.
  data: l_idx like sy-tabix.
            read table l_t_range with key
                 fieldname = 'FISCPER'.
            l_idx = sy-tabix.
            l_t_range-iobjnm = '0FISCPER'.
            l_t_range-fieldname = 'FISCPER'.
            l_t_range-sign = 'I'.
            l_t_range-option = 'EQ'.
            l_t_range-low = zperiod.
            if l_idx <> 0.
              modify l_t_range index l_idx.
            else.
              append l_t_range.
            endif.
            p_subrc = 0.
  Please let me know if I am making any mistakes above..
  Kind Regards,
  Kadriks

  Hi
  1.  CLEAR l_t_range-high. is missing in your code befor assigning values to l_t_range.
  2. use simple append l_t_range after the l_t_range asisgnments. remove below code :
  if l_idx 0.
  modify l_t_range index l_idx.
  else.
  append l_t_range.
  endif.
  p_subrc = 0.
  3. I dont think you need to assign infoobject.
  4. Clear sel_period and zperiod is also missing
  Hence your code should be  :
  data: l_idx like sy-tabix.
  read table l_t_range with key
  fieldname = 'FISCPER'.
  CLEAR l_t_range-high.
  l_idx = sy-tabix.
  l_t_range-fieldname = 'FISCPER'.
  l_t_range-sign = 'I'.
  l_t_range-option = 'EQ'.
  l_t_range-low = zperiod.
  append l_t_range .

• Object Level security not working on OBIEE 11g 11.1.1.7

  Hi,
  I am experiencing problems with object level security applied on application role in 11.1.1.7 version. If i create a user and assign that user to a application role and give that application role permission to Access Answers in Manage previleges, it is not working. If i directly add a user to permission list in Manage previleges section then user is able to access the answers. I added that application role in "Access to Answers" section in Manage previleges section. Permission for Authenticated users is denied.
  We recently upgraded from 11.1.1.5 to 11.1.1.7. Please can someone confirm if it a bug in 11.1.1.7 or it is because of the upgrade process.
  Regards,
  Sandeep

  Hello Sandeep,
  I have just verified the below scenario as you said but didnt find any issue.
  I have just created a User, Group and Applictaion Role under default authentication provider . Assigned user under group and group under newly created application role and provided access to answers for new application role under manage privilages and I am able see it.
  This might not be a 11.1.1.7 bug check it from upgrade end.
  Regards,
  Srikanth

• Row level security not working if I hit the aggregate

  I have applied row level security on presentation layer , however it does not work if the report hit the aggregate any idea on this...

  Hi Ingo,
  Security is set up using /crystal/rls transaction. A custom auth object is used for checking the company code with a single field "BUKRS".
  This custom auth object is maintained for the PA0001 table.
  This object is added at the role level with the restricted access to the Company Code..

• In Mac Filter gallery on Photoshop CC not working?

  In MAC!
  I want to use Filter gallery! But it's not working.....
  Just show an error message~~~~~~...
  1. First  open menu~~and click this menu button.
  2.Show error message~~~.....it's mean Unable to complete the operation.
  this is my os version.
  this is my photoshop version.
  Now who can help me~~~~~~??????

  I didn't find this folder in my mac.
  【Users/[user name]/Library/Preferences/Adobe Photoshop CC 2014 Settings and rename the file Adobe Photoshop CC 2014 Prefs.psp to Adobe Photoshop CC Prefs.old.psp】
  I have already Command+Shift+Option and restart Photoshop...
  I have also tried to reinstall Photoshop ....
  But it's still not solve the problem...
  I don't konw why~~~~~~~~~

• Folder level permission not working

  Hi,
  I have created a user Test_sup and assign few finance roles in BI system.I have imported these users and role to business object system and then i created an Enterprise  group Financial reports and add the Sap roles as sub group and the test_sup is also member of the Financial reports parent group.Now i assigned the user test_sup on a folder called security and assigned the customized access level which i created and removed the folder inheritance.
  Now when the test_sup logs in BI lauchpad he is able to see all the folders as well security folders.But i need to restrict the user by only access to security folder which mean he should only see the folder security and not all folder .
  Pls let me know if i ahd made any mistake above as it is not working .

  Hi,
  So it mean i should alter the standard access level of Everyone.
  Also i am also not able to remove Everyone and Administrator group on any folder .The tab remove is faded.
  Below is the User security of my folder Security
  Administrator
  DB1~100/TEST_SUP
  Everyone
  Financial Reports_test
  Pls clarify

• Row Level Security not working for SAP R/3

  Hi Guys
  We have an environment where the details are as mentioned below:
  1. Crystal Reports are created using Open SQL driver to extract data from SAP R/3 using the SAP Integration Kit.
  2. The SAP roles are imported in Business Objects CMC.
  3. Crystal Reports are published on the Enterprise as well.
  3. Authorization objects are created in SAP R/3 and added as required for the row level security as mentioned in the SAP Installation guide as well. The aim is when the user logs into the Infoview and refreshes the report he should only see data that he is meant to so through the authorization objects.The data security works very much fine when the reports are designed directly on the table but when the reports are built on the Business View it doesnt work hence the user is able to see all data.
  Any help in this issue is greatly appreciated.
  Thanks and Regards
  Kamal

  Hi,
  In order for row level security to work for you using the OpenSql driver, you need to configure the Security Definition Editor on your SAP server.  This is a server side tool which the Integration solution for SAP offers as a transport.
  This tool defined which tables are to be restricted based on authorizations.
  However since you are seeing the issue on reports based on Business Views, you need to identify whether the Business View is configured in such a way where the user refreshing the report is based on the user logging into Infoview.  If the connection to your SAP server is always established with the same user when BV is used then you security definition is pointless.
  You can confirm this by tracing your SAP server to identify what user is being used to logon to SAP to refresh the reports.
  thanks
  Mike

• Concert level mapping not working

  I've tried  to make my playback controls work on a concert level so I don't have to reset them to each patch. For instance, I tried setting a button to play but it doesn't work. Any ideas?

  Hi
  Where you put the Playback Channel Strips all depends on how you want to work. The basic concept is that at Patch level they will only work in that particular Patch. At Set level they will work throughout that set (with or without additional patches in the same set). At Concert level they are Global.
  You may find it useful to make one Set or Patch with the right number of Playback channels, map the Screen controls, then make copies of the Set/Patch and simply swap out the Playback audio files. That way you only have to do the Control mapping once.
  You could also save the Set/Patch, for future use.
  HTH
  CCT

• How to create @prompt filter at universe level for my Webi reports

  Dear all,
  I am using BO XI 3.1 SP3 with SAP BW 7.0.
  I have created an open[big] query based on a multiprovider for my OLAP universe.
  OBJECTIVE: to create LOV prompts for Calender year, for my webi reports, which takes 2010 as input then offsets the input year and then shows Gross sales for the prompt year [2010], 2009 & 2008.
  ISSUE: if 2010 is selected in webi prompt filter, then it doesn't display any data for any other year, lets say gross sales for 2009.
  ALTERNATIVE: i tried to create a prompt filter in the universe with this syntax,
  <FILTER KEY="@Select(Calendar year\Calendar year).[TECH_NAME]"><CONDITION OPERATORCONDITION="InList"><CONSTANT TECH_NAME="@Prompt('Enter year','N',,Mono,Free,Not_Persistent)"/></CONDITION></FILTER>
  it worked fine. but i also want to create a measure or dimension which subtracts 1 from the above filter and return a result with a previous year.
  e.g
  PROMPT: 2010
  PROMPT-1: 2009
  Universe structure
  [TIME]                         class
    [Calender year]        class
       [Calender year]     dimension  ( type:string)
  Please guide me with correct procedure and syntax.

  masood44 ,
  I think you should just prompt for year and capture and use the selection at the webi report  level.
  say you have calendar year(convert it into numeric) prompt at webi level. say user selects 2010 capture it in a variable var1:userresponse('enter year'). then create a variABLE (var2)  with formula :
  if(isPromptAnswered('enter year')='yes';([year] where year inlist(var1;var1-1;var1-2);null)
  build your report with var2 and gross income
  Thanks,
  Karthik
  Edited by: kbharadwaj79 on Jun 2, 2011 5:34 PM

• Access Control Mechanism (data level security) not working properly

  Hi Experts,
  I have done datalevel security for groups by help of a database table. This table contains UserId, Dept. code, GroupName column. UserID are verified by LDAP server during logging into Dashboard. I have made two init blocks for GroupName and Dept.Code .
  Query is :
  SELECT 'Group', GroupName from TABLE
  Where
  UserId = ':USER'
  Similiar query is for Dept Code.
  There are two groups ; 1. CC_User 2. Full_User. I have applied filter in PERMISSIONS for CC_User on Fact table on Dept Code. So, user in this group may see data for Dept Code aligned to him in the table. All_User may see whole data for All Dept Codes as NO filter is applied on this group.
  Dept Code , UserId and GroupName are Varchar.
  Now problem is this when a user have membership of one group , it works fine. For CC_user it shows data for its Dept Code and All_user may see whole data.
  But When A user have permission of both the groups , only data related to CC_User group is visible. But, in my view , maximum permmision out of the both groups must be applied to the user if he belongs to more than one group.
  So , here , he must see whole data, as All_user group can see full data.
  Does least restrictive permmission happens in case of membership of more than one group in OBIEE.

  848839 wrote:
  Does least restrictive permmission happens in case of membership of more than one group in OBIEE.Indeed it does. The most restrictive filters get applied if a user belongs to multiple groups that have filters at various levels of data because its always an AND clause in the where condition. This is the sort of behavior in various tools I have seen apart from OBIEE.
  Hope this helps.
  Regards,
  -Amith.

• Group Level Data Level Security not working

  I'm trying to test the data level security at the group level.
  Here's what I did
  1. Went to the security -> Groups -> Permissions -> Filters
  2. In Name added the Fact table on which I want to filter.
  3. Selected "Enable"
  4. In Filter Column I added a filter on a column in the dimension. (I didn't use any session variables in the filter)
  When I create an answers query with the column from the dimension (Which I used in filter) and fact from the fact table where I defined the filter, the filter is not applied..
  Am I missing something in the creation of filters?
  Thanks in Advance.
  Rama.

  Hi,
  If the user is member of both user defined and Administrator group no filter will be applied to them because Administrator group will take precedence and no filter can be applied to Administrator.Even if you ooen Administrator group, you will see that permission tab is disabled for Administrator group.
  Hope this helps.
  Regards,
  Sandeep

• Database Level Security not working ???

  The 10 g (10.1.2.1) documentation states the following:
  Chapter 7 Controlling access to information:
  "Regardless of the access permissions and task privileges that you set in Discoverer Administrator, a Discoverer end user only sees folders if that user has been granted the following database privileges (either directly or through a database role):
  ex: SELECT privilege on all the underlying tables used in the folder "
  So how come a folder (view in my case - not table) cannot be queried directly by a user, but the folder still shows up a choice when building a report using PLUS ? I am misreading the above ? For is sounds lilke to me if the user account does not have SELECT privilege then they will not see the folder in Discoverer ?
  Anyone run into the same issue or have an explanantion ?
  thanks
  OBX

  I think the user has access to see all the folders in the business area in Discoverer if he has permission to do so. This is a Discoverer level security to filter people who should not have access to the business area at all. You'll find that although they can see these Discoverer folders because the permission is set in Discoverer Administrator, that the database tables they are based on will not allow the users to see any of the data if they don't have those rights at the database level.

• Item Level Security not working with Tabs

  I've Portal 9.0.2.2.22
  This issue is with Item Level Security with Tabs. Here is what I've have:
  Page Group: MyPagegroup (Privs: portal => Manage All)
  Page: MyTestPage (Privs: portal => Manage All,
  testUser => View)
  There is a tab called MyTab on page MyTestPage which has two items (simple images) image1 and image2. The tab's access privs have been set NOT to inherit from the page. The public check box has not been checked for the tab. I've specifically assigned access privs to the tab.
  Now here are the two scenarios that I'm having problem with:
  1) MyTab (portal => Manage All, testUser => view)
  image1 (ILS enabled: portal => Manage All)
  image2 (ILS enabled: portal => Manage All,
  testUser => View)
  When logged in as "testUser", I still see both the images on MyTab although image2 doesn't have view priv to testUser. My expected result is to see just image2 on the tab.
  2) MyTab (portal => Manage All)
  image1 (ILS enabled: portal => Manage All,
  testUser => View)
  image2 (ILS enabled: portal => Manage All)
  When logged in as "testUser", I still see NO images on MyTab although image1 has view privs to testUser. I would expect to see image1 on the tab.
  Question: In both the above cases, the tab privs seem to be dictating what the user sees regardless of what the item level privs are set to. Is this normal behavior or a bug? If a bug, is there a patch? Is there any way so that even after setting the tab privs, I still have finer control of what the user can access through item level privs?
  If I don't put the items under a tab, then things work as expected.
  thanks
  Lalit Agarwal
  Vienna, VA
  703-521-5200 x3610

  This is a known problem with the 9.0.2 release - fixed in 9.0.2.6.
  Regards,
  Jerry
  PortalPM