How to achieve Tab level security in a WEBI report?
hi,
I have 2 tabs in a single Webi XI R3 report. This report should be viewed by 2 users with the following conditions.
1st Tab should be seen by only User #1. (Tab 2 should be disabled)
2nd Tab should be seen by only User #2. (Tab 1 should be disabled)
How can we achieve this?
Regards,
Vamsee
It is not possible to provide security on a report tab, only the document itself. Making it a requirement doesn't change the features of the product.
If the two tabs are showing data in different formats, then using two different reports is the way to go. If the report tabs are showing the same format but different data (content) then you can apply filters or security rules in the universe itself to restrict data to what User 1 and User 2 are allowed to see.
Similar Messages
-
How to apply Table level Break in the WEBi Report
Hi,
How we can apply the table level break in the WebI Report.
I know a bit bt i dont know its right or wrong.. Initally we normally create a table(with the values(which has 2rows(1: for naming and 2: for associating the object with it at down of it ie., one above and one below)) and at the top of that present table we will insert a "ROW ABOVE" to the naming row and then we insert a "Row below" to the object values and drag the first coloumn of the first row almost invisible(naming row) and then the same in next row(objects associating values for naming)... is this ryt.. if NO thn let meknow the various ways to do it..
Thank you in Advance....Hi,
what is your requirement. if to show subtotal then create one table and select one column and apply break.
Thanks,
Amit -
How to add Tabs and List Boxes in Webi Report in Reporting Area(Not Report Filters & Input Controls)
Hi All,
I have a requirement to use some components called List Box and Tabs in my WebI report for presenting the information by dynamic dimension and measure selection using list box and segregate information by using Tabs as in below image.
Image was prepared in MSPaint not executable webi report.
Is it possible to integrate the list box and tabs into Report Zone in BO Webi? as show in below image?
Thanks in Advance
Muralidhar Reddy NHello Muralidhar Reddy,
The exact tool for your requirement is SAP BO Dashboard or SAP BO Design studio. WebI is a tool for ad-hoc reporting tool and we have limited functionalities to make dashboards using webI. You can have all those chart options in WebI and you can use Input controls or drill filters for restricting data. But you cannot have these selection components in reporting area. Tabs as shown in above post, you can have in bottom of the report.
find below a good example of dashboard using WebI
http://blog.davidg.com.au/2011/04/webi-as-dashboard.html
hope it helps
Regards,
Nikhil Joy -
How to implement row level security?
Hi all,
There is a database which is for 3 companies to use it and how to use row level security to make sure that they can only manipluate their own data? For example, "employee" table, for each company they just can see their own employees information. How to use dynamic view to do it?
Many Thanks
AmyHere are two options to achieve what you want.
A. You can do this by coding, that's if you are ready to. Are you? If yes then try the steps below:
1. create a security codes table. Say for example
001 - company a
002 - company b
2. create a security table that will list all users and which company they should have access to. You can also implement this by roles.
3. alter all tables in the application schema to add a security code column. This will be a foreign key reference to table created in 1 above.
4. update all data in the tables according to which company they belong to.
5. write a procedure or package that does a validity check whenever a user requests for data. This procedure/package determines which company data the user has access/rights to.
With this, you should be able to achieve what you want if you do not want to spend on VPD and FGAC. The problem comes where there are users who would have cross access to data from both companies. In this regard, then you have to modify your security table a little bit to handle this.
B. This option i will admit is not so clean. You can also achieve this by two different views for every table in the application schema. And on each of these views, create a private synonym for every user. For illustration purposes:
Table name = Employee.
Create a view employee_a on employee
create a view employee_b on employee
Let's say you have users x and y. X has access to employees of company a and y has access to employees of company b. You can now create private synonyms for each of these users as follows:
create synonym employee on employee_a in x schema.
create synonym employee on employee_b on y schema.
This i have not tried but believe should work.
Hope one of these options serve your purpose. -
How to Migrate Row Level Security Configuration
Hi Guys,
Does anybody know how to migrate row level security configuration? I suppose PeopleSoft provided a data mover script, like securityexport.dms.
Thank you in advance,
BobHere are two options to achieve what you want.
A. You can do this by coding, that's if you are ready to. Are you? If yes then try the steps below:
1. create a security codes table. Say for example
001 - company a
002 - company b
2. create a security table that will list all users and which company they should have access to. You can also implement this by roles.
3. alter all tables in the application schema to add a security code column. This will be a foreign key reference to table created in 1 above.
4. update all data in the tables according to which company they belong to.
5. write a procedure or package that does a validity check whenever a user requests for data. This procedure/package determines which company data the user has access/rights to.
With this, you should be able to achieve what you want if you do not want to spend on VPD and FGAC. The problem comes where there are users who would have cross access to data from both companies. In this regard, then you have to modify your security table a little bit to handle this.
B. This option i will admit is not so clean. You can also achieve this by two different views for every table in the application schema. And on each of these views, create a private synonym for every user. For illustration purposes:
Table name = Employee.
Create a view employee_a on employee
create a view employee_b on employee
Let's say you have users x and y. X has access to employees of company a and y has access to employees of company b. You can now create private synonyms for each of these users as follows:
create synonym employee on employee_a in x schema.
create synonym employee on employee_b on y schema.
This i have not tried but believe should work.
Hope one of these options serve your purpose. -
Hi
I have a question around Tab level security.
We are deploying a Portal to 4 different parts of the organisation. Depending on which group the user is assigned will determine which Tab they are able to view. At present I am able to use the group to which the user is set up to allow them to view the correct tab. However I now need to only provide access to these tabs for certain users with a particular role/responsibility. So first the tab will only be available to users in Group A but I also now need to prevent some users in Group A without a particular role.
Do I need to create a new group for all persons in Group A with the correct Responsibility or is there another way of doing this. For example on assigning them to Group A and then interrogate this Responsibility when they click on the Tab.
I hope this makes sense ?
Regards
KevinJust off the top of my head, can you create another discrete group of the Group A users who need access to the other tab, and then give that group view rights? Haven't played with it myself, but we use a similar strategy for other items.
-
How to implement data level security
How to implement data level security in BI Publihser?. I am using Obiee enterprise edition and bi publihser. My requirement is to show data based on User- Region relation ship.
User A - belongs to Eastern Region
User B - belongs to Southern Region
so if user A logged in he should see only Eastern Region report. If user B logged in He should see only Southern region. I am using direct sql to my oralce database as data source.
i appriciate your helpI am using a common database username and password for jdbc connection. what i am looking is based the BI Publihser login, is there any way?
say i have userregion table joined with fact. so that i can write a query to get the data
select c1,c2,c3
from userregion, fact
where fact.region=userregion.region
and userregion.user = BIPUBLIHSERUSER
but my question is ithere any variable to tell who is logged in BI Publisher? Any server varaibles?
Other related question is, In every report i want to show User name who is running the report. How can i get this? -
How to change the folder name in the web report.
hi experts,
can anybody give me the solution, how to change the folder name in the web report. any help is appreciated.
waiting for ur favourable response.
thanks
suriHi Tony,
Yes, the business requires, only to change in the webreport only not in bex and roles. any suggestions will be helpful to me.
thanks
surendra -
How to write the folder path in standard webi report - Most Accessed Documents
How to write the folder path in standard webi report - Most Accessed Documents
All
-> Public Folders
-> Auditor
-> ABCD
I want to give path of folder 'ABCD' and all the reports/ subfolders under it?
Prompt - 'Enter the Folder Path(Add % at the end to include Sub Folders)' ?
Give me exact path syntaxHi Daniel,
But when I give my URL as
http://serverA:80/irj/portal??NavigationTarget=ROLES://portal_content/crm-practice/14-Feb/Test_Page
I am able to access the iview but the thing is I am getting TLN,Toolarea,Masthead,etc.
I will tell my requirement,
ServerA (EP 7.0) has some iviews,pages...
I need to access these iviews from serverB(EP 6.0)....
In ServerB only the iviews has to be displayed in the content area but not TLN,Toolarea,etc.
Kindly help me in this regard.
Thanks and regards,
Purushothaman.
Message was edited by: Purushothaman Vyasarao -
How to show muliti language data correctly using webi reports
Hi ,
Can you please suggest me how to show multi language data correctly in webi reports .
Do we need to install any lang pack in both server and client machine ?
Thanks & Regards
Venkatyou mean using translation manager? or data from DB? or both.
You need to make sure that your DB is already configured for multiple languages.
Enable the OS for multi languages
On XIR3.1, you will need to install language packs on the processing servers. then you can utilize translation manager.
Installation of Language Packs are a pain to install and update. -
How to do data level security on users based on region
Hello guys
I currently have created a report with dashboard prompt on column "state" with a default value "CA"
Now, the requirement is to perform data level security on this report, so different users based out of different state will log in to the dashboard and this prompt will change its default value accordingly so the user will have the report on only users home state prompted, and users can't see other state data..
I have thought of creating session variables to achieve the same, but how should i set up the initialization string?
Do I need to create a new table called "user table" that stores username/password and state columns and make that user table join to the fact table in the db?
If so, how should I configure the session value so that users get filtered date based on its state location?
PLease provide guidance
ThanksHere’s an idea off the top of my head (untested):
First, set up your security constraints normally using Manage…Security in the Administration Tool, so that each user can only see his/her state. Refer to the previous responses to this post for guidelines.
Then, in your dashboard prompt, for the “Default Value”, write a tiny bit of logical SQL to query the “state” column from the presentation layer. If your security constraints are properly in place, the SQL should only return one value.
To get an idea of what the logical SQL should look like, select “All Values” as the default value, then switch it to ‘SQL Results’. That will show you the basic format of the logical SQL. It’s really just normal SQL (select <this> from <that> where <the other>), but referring to presentation layer objects rather than to physical tables and columns.
Untested. Please reply back and let us know how it goes. -
How to provide Responsiblity level security in OBIEE 11g
Hi all,
Can any one tell me how to provide the responsibility level security in OBIEE 11G.Hi,
You need to create group of users and then apply filters over that groups.
you should establish an additional filter for group1 (user1 belongs to group1 in your example). Follow next steps:
- Manage -> Security...
- Groups -> click right group1 and select propierties.
- Select button 'Permissions...'
- Select tab 'Filters' -> add new filter.
- On the column name select the metric you need filter, in your example, customer sales. On the column 'Business model filter' put table.division=division1
you should add the Customer table to your Sales-fact LTS add apply the filter to this combined LTS as well
For more:
http://oraclebizint.wordpress.com/2008/06/30/oracle-bi-ee-1013332-row-level-security-and-row-wise-intialized-session-variables/
also try http://www.biblogs.com/1969/12/31/obiee-11gr1-security-explained-an-11g-security-overview/
http://forums.oracle.com/forums/thread.jspa?threadID=1120336
Thanks
Deva
Edited by: Devarasu on Oct 11, 2011 6:08 PM -
How to use Item Level security
I am working on portal 9.0.2.6.18.
I have a folder with 1000 items. I want to grant groupA
access to 997 items and
(Group B,GroupA) access to 3 items.
How do i do this.
Here is what i tried:
1.enabled item level security on folder
2.granted folder level access to groupA and groupB
3.Changed access of 997 items to grant access to GroupA
4.Did nothing to the 3 items which i wanted to give access to GroupA,GroupB
Is there a better way of achieving this?
I am not really comfortable granting folder level access to groupB, because if i miss overwriting privileges of an item (in step 3), then groupB will have access to that item. I would love to change just 3 items because they are the exception.
How is this feature supposed to be used?
Thanks
HarishMartin,
Thanks for the reply. I just cited 1000 items folder as an example. We have various complex combination of security requirements for folders and items. So creating sub-folders for each combination will not work for me.
Everytime the security requirements change we have to move the items around, which can confuse users. And sometimes we have to create sub-folders to workaround the item-level security problems even when there is no logical business classification to a set of items.
Harish -
How to implement row level security using external tables
Hi All Gurus/ Masters,
I want to implement row level security using external tables, as I'm not sure how to implement that. and I'm aware of using it by RPD level authentication.
I can use a filter condition in my user level so that he can access his data only.
But when i have 4 tables in external tables
users
groups
usergroups
webgrups
Then in which table I need to give the filter conditions..
Pl let me know this ...You pull the Group into a repository variable using a session variable init block, then reference that variable in the data filters either in the LTS directly or in the security management as Filters. You reference it with the syntax VALUEOF("NQ_SESSION.Variable Name")
Hope this helps -
How to provide page-level security..
HI,
I have a requirnment that a single report having multiple pages is generated such that each or some of the pages have security tags that are compared to a security identifier list of a particular user that acts as a security clearance for that user. How to do this programatically.
Through this comparison, a subset of pages from the report is formed which makes up a "report" from the user's point of view that contains only data the user is allowed to see. This allows multiple users to view only authorized portions of a single report having page-level security determined by level breaks in the data.How to do this also programatically.
including both the task is one requirnment. if any one know how to do this using java program or xml, please reply as soon as possible.
thanks in advance.How does you post have anything to do with SQLJ/JDBC? If this is an Oracle Report then post it to the Oracle Reports forum. Otherwise, look at the JDeveloper forum.
Maybe you are looking for
-
I recently got hacked and I had my primary email password different from the password for the email. Now, I tried to change my primary email on the old account and it seemed to work, until I tried to sign in again and it didn't. I made a new Apple ID
-
Since receiving the last Ovi player updates for my PC, it cannot download more than one song at a time even though I can create a download list of as many songs as I like. The download speed also seems to have slowed. Previously I was on ADSL1 and no
-
Hi to all, Can anybody kindly tell me how to solve the following: Due to the huge volume of records in the table ZMES_SEQ_DETAIL it required to archive the data based on the Date on which the record was created, which is 18 months older in the table
-
'GROUP BY' clause in Database views
Hi, I use SE11 to create database view from a table. I wonder if it is possible to specify a 'GROUP BY' clause? Basically I need a database view that looks like this:- SELECT FISCAL_PERIOD, SUM(QUANTITY) FROM TABLE A GROUP BY FISCAL_PERIOD Please hel
-
SQL Query question : how to add data to two tables connected by third Junction-table.
Hello specialists. Maybe this is the wrong formum but I've got a question for which you probably have the answer, i hope. Situation John is member of Group_A and Group_B Bill is member of Group_B and Group_C Allison is member of Group_A and Group_E H