OBIEE 11.1.1.7 default security.

Hi,
I recently installed 11.1.1.7 on linux 64bit.  Added a test user in weblogic without assigning to any groups/roles. When logged into OBIEE, i can create new analysis which is wrong, as by default i should be tagged as BI Consumer.  Is this a bug or am i missing any configuration.  Appreciate any input.
I checked My Account -> Roles and Groups...and found to have Authenticated Role, BI Consumer Role and Presentation Server Administrator group.
Thanks in advance.
Ven

Thanks for the responses.  Though a user in weblogic considered as Administrator, when the same logs into OBIEE web, isn't he be considered as BI Consumer?  In Manage privileges area under OBIEE web, I see that BI Consumers have access to Answers, BI Composer and many more options that they are not supposed to.
  For now, turned-OFF the "New Menu" under "Home and Header" section to BI Consumers and turned-ON for BI Auther.  I think its a bug in 11.1.1.7 to have wrong defaults in Manage privileges area, is this expected?
Thanks,
Ven

Similar Messages

  • When I try to combine two pdf's, it asks for a permission password and says the documents are protected; however, I didn't put any protection/security in the documents.  I assume it is a default security under the enhanced security settings of the Acrobat

    When I try to combine two pdf's, it asks for a permission password and says the documents are protected; however, I didn't put any protection/security in the documents.  I assume it is a default security under the enhanced security settings of the Acrobat Pro XI which I recently purchased.

    Acrobat (Pro or Standard) does not apply a "default" protection. It appears that someone or some other process has applied protection.
    Be well...

  • Changing Lion PDF default security settings

    After I create a document in Word or Pages, I save them as a pdf.  I then want to digitally sign them in Adobe Reader.  But the default security settting when saving as a pdf does not allow adding a digital signature.  Anyway to change the default OSX settings so that digital signatures are allowed by default?
    Preview just ignores digital signatures so I have not found any work arounds there.
    ...Bruce...

    I'm OK with how to remove the security settings from a document:  Documents > Properties (security tab; "No Security").
    What I'm looking for is the path to removing the security settings such that they are NOT applied when I convert a document to PDF. What is happening now is that when I convert a MS Word doc to PDF, the security settings are applied by default, which means I have to go the process, albeit a short one, of removing the security settings from the document - as referenced above.
    So again, if I simply launch Acorbat Pro 9 (without opening of a document), what is the correct path to removing (permenently) the security settings so that they are no longer applied to a converted document by default?
    Thanks in advance.

  • Default security code of nokia 808 pureview white

    Please can anyone provide me with the default security code in nokia 808 pureview white? i want to clear the mobile data used counter but everytime it is asking for the security code....

    If it doesn;t work then someone must ahve changed it. Anyway, the only other option is to get it reset at your local Nokia Care Point. You will need to bring proof of purchase with you.
    You can locate your nearest care point using the link below
    www.nokia.com/support

  • Verify custom plugin signature with Adobe Default Security

    Hi,
    I have a few questions using Adobe Default Security when verifying a signature.
    I've created my own signing plugin which works well. When I verify my signature it states that it is a valid signature, that the document has not been altered and that the certificate is valid. When I remove my plugin and verify the signature with the Adobe Default Security it states that the signature is invalid and that the document has been altered or corrupted. When I use the DocSign sample plugin to verify my signature it states the the signature is unknown and that the integrety has not yet been verified.
    My question are:
    Why Adobe Default Security telling me the signature is invalid instead of unknown, like the DocSign example?
    What can I do so that signature becomes unknown and not invalid when verified with Adobe Default Security?
    Why is Adobe Default Security telling me the document has been altered or corrupted, when it has not been changed?
    Regards,
    Magda

    As this can't be debugged without a copy of your plugin, files, etc. - you will need to open up a formal support ticket for this with our Developer Support.

  • Default security context for signed applets using WinXP+IE8

    What is the default security context for signed applets from the internet zone using Java 6 and WinXP+IE8 combination? My guess is that all file and socket access available for the user's Windows account is provided to the applet as well. Is this correct and if so, is there a way to limit these access privileges for signed applets from the internet zone?
    This information is surprisingly difficult to find given how security concious people now are using the internet.

    AntonBoer wrote:
    Thank you for your swift reply.
    Unfortunately your answer reflects to my worst fears. Frankly I find this security model naiive. Anyone with euros can get their applet signed so that is no security control at all.The same naive security model applies to just about anything signed and downloaded; not just to Java Applets.
    >
    Working for a corporate IT how I am supposed to allow Java installations on any of our computers with internet access? That automatically means I am providing them as platforms to whoever wishes to run Java code on them (given that the user of course visits the web site). I would have expected Sun to put more effort into this but it appers nothig have changed in this regard for 10 years.I don't see this as a Sun problem; it is indicative of what I consider to be a general security weakness for all computer systems. For example, for Windows, Vista just added more user involvement in the trust process but it still allows programs to run pretty much unconstrained if the user agrees to them running.
    For some time I have advocated a more fine grained approach. I would like to see ALL programs run in a sandbox that a user can specify what and what cannot be done by each individual program. Unfortunately, this would annoy the hell out of most users so it has little chance of every of ever being accepted. The average user just wants a run-and-forget-about-security model.

  • Default Security Question

    I have two questions regarding the default security built into the Manager role.  First, is it possible to modify the behavior so that rather than they can only see analytics data for the org unit below them, rather than the org unit they are in?  Second, it seems that by selecting either of the Analytics views from the top menu, the manager can see those analytics for every single org unit, rather than the one they are in.  I was under the impression that the default security would only allow them to see analytics data for the org unit they are in and those below them.  Is it possible to modify this behavior?  Thanks.

    Hi Luke,
    See my anwswers in bold:
    First, is it possible to modify the behavior so that rather than they can only see analytics data for the org unit below them, rather than the org unit they are in? You can remove the Current OrgUnit tab and leave the Reporting OrgUnit tab. For the Position and Staffing Analytics you probably need to change how the counts are generated in Counts.xml
    Second, it seems that by selecting either of the Analytics views from the top menu, the manager can see those analytics for every single org unit, rather than the one they are in. I was under the impression that the default security would only allow them to see analytics data for the org unit they are in and those below them. Is it possible to modify this behavior? This should be the default behaviour for a Manager role. Having checked in the Roles.xml this seems like it should be the case. If not you can amend AppResources.xml and add the securitykeyword to the detail sections that display the analytics.
    I hope that helps!
    Luke

  • BEA public API (WLS6.1)for programatically updating default security realm?

    Hi,
    Does anyone know how to use BEA's public API to programmatically add/update WLS
    6.1 user credentials in the default security realm? The API would of course
    automatically persist the updates to $WLS/config/mydomain/fileRealm.properties.
    Is there a way to do such updates by programmatically engaging the WLS security
    realm related Mbeans? I basically need to do (from a deployed application component)
    what is easily done from the WLS Console's [security->User->Add User/Change
    Password] screen. Ideally, I could use the same API that the weblogic.security.acl.internal.FileRealm
    command line utility (or wlshell also) uses to make updates. But I doubt that
    the classes used by these tools are in BEA's public API for WLS 6.1. Especially
    important to me would be the BEA API mechanism that takes a clear-text password
    and hashes it to the encrypted format written in fileRealm.properties (and synchronized
    w/ SerializedSystemIni.dat). Ultimately, I am trying to replicate a large
    Oracle table of (*user, clear-text -password, group) records into the default
    WLS security realm. Thanks for any insights.
    Ben

    Thanks to another's post, I have found the answer to my problem in the Girdley/Woollen/Emerson
    book "J2EE Applications and BEA WebLogic Server" pp. 496-498:
    Note: this code segment is for WLS 6.1 and this API is said to be deprecated
    in WLS 7+
    //Roughly outlined, assuming session w/ userName, groupName, password Strings
    in HTTP Post request
    weblogic.security.acl.CachingRealm realm = (weblogic.security.acl.CachingRealm)
    weblogic.security.acl.Security.getRealm();
    weblogic.security.acl.User u;
    weblogic.security.acl.Group g;
    u = realm.newUser(userName, password, null);
    g = realm.getGroup(groupName); // use g = realm.newGroup(groupName) if groupName
    does not exist in realm
    g.addMember(u);
    //log in the new user
    int rc = weblogic..servlet.security.ServletAuthentication.weak(userName, password,
    httpSession);
    // use realm.deleteUser(u), realm.deleteGroup(g) as appropriate, etc.
    "Ben Cotton" <[email protected]> wrote:
    >
    >
    Hi,
    Does anyone know how to use BEA's public API to programmatically add/update
    WLS
    6.1 user credentials in the default security realm? The API would of
    course
    automatically persist the updates to $WLS/config/mydomain/fileRealm.properties.
    Is there a way to do such updates by programmatically engaging the
    WLS security
    realm related Mbeans? I basically need to do (from a deployed application
    component)
    what is easily done from the WLS Console's [security->User->Add User/Change
    Password] screen. Ideally, I could use the same API that the weblogic.security.acl.internal.FileRealm
    command line utility (or wlshell also) uses to make updates. But I
    doubt that
    the classes used by these tools are in BEA's public API for WLS 6.1.
    Especially
    important to me would be the BEA API mechanism that takes a clear-text
    password
    and hashes it to the encrypted format written in fileRealm.properties
    (and synchronized
    w/ SerializedSystemIni.dat). Ultimately, I am trying to replicate
    a large
    Oracle table of (*user, clear-text -password, group) records into the
    default
    WLS security realm. Thanks for any insights.
    Ben

  • OBIEE 11g, BI Apps EBS: What are default security variables and Init Block

    Hi,
    We are implementing BI Apps 7.9.6.3 [OBIEE 11.1.1.1.5 with EBS modules]. Out of the box RPD and mappings.
    There are many VARIABLES and INIT BLOCKS in the RPD. Some of them are mainly for Siebel, Jd Edwards etc.
    I need to know what are the default variables and Init Block configures in RPD. Also it will be highly appreciated if anyone can point out what segments we should configure if we need to implement security with simple database table authentication with SSO?
    Thanks in advance.

    You should review this doc for the options for EBS/OBIA security:
    http://docs.oracle.com/cd/E20490_01/bia.7963/e19042.pdf
    If helpful, pls mark as correct or helpful.

  • [OBIEE 11g] Enforce star-schema without security filter?

    I have imported my first OLAP cube using the instructions <a href = 'http://www.oracle.com/webfolder/technetwork/tutorials/obe/db/11g/r1/olap/biee/createbieemetadata.htm'>here</a> and have applied the necessary security filter to force the star join between the cube and dimension views. However, the security filter does not apply to users in the BI Administrator user group. Is there any way to do this without a security filter, or somehow apply the security filter even when the user is an administrator?
    Edited by: islan on Jan 22, 2013 7:56 AM
    Edited by: islan on Jan 22, 2013 7:57 AM

    The link in your first posting points to the old-way of creating OBIEE metadata for OLAP objects.
    Starting with OBIEE 11.1.1.5, it is much simpler as Oracle-OLAP is one of the data sources in BI-Admin Tool.
    So do not use the old way.
    Start with this doc:
    http://www.oracle.com/webfolder/technetwork/tutorials/obe/fmw/bi/bi11115/olap/olap.htm
    For your other issue, you need this troubleshooting doc:
    http://www.oracle.com/technetwork/database/options/olap/troubleshootingbieeconnections-504856.pdf
    Note that even though it says OBIEE 11.1.1.5, the above two docs are applicable to 11.1.1.6 and future releases.
    For security, you should define it in OBIEE instead of doing in OLAP.
    .

  • Obiee 11g . problem with set default as columnname in interaction tab

    Hi Obiee gurus ,
    I have small problem with set default option in interaction tab in column properties. actually my problem is , i changed one column bold save as set default option bold and how to revert back to my column option. when i create new analysis with same name . it takes set default option for that column.
    can Please give some suggestion for this problem.
    regards
    Srinivas

    Hi Srinivas,
    i guess this will be same for 11G
    Refer
    http://blogs.oracle.com/siebelessentials//2008/08/remove_systemwide_default_sett.html
    thanks,
    Saichand.v

  • OBIEE 11.1.1.6 External Security Issue

    I have setup MSAD in WebLogic successfully, however my issue is that no user can log in unless I assign their ID to BIAdministrator role. If I assign my ID to that role I can login. If I assign my ID to BIConsumer role it fails. I have the same setup on a VM and am also using MSAD and I can login with an external user without assigning them a role as I assume all users by default get the BIConsumer/Authenticated User role. Is there something I am missing here? I have already refreshed GUID's, but that did not change anything. I obviously assign every user to BIAdministrator role. The other difference between my VM and this other install is I have 7.9.6.3 apps installed where my VM is not using the Apps and did not know if they changed something from the security standpoint.

    Bump
    Edited by: J.A.M on Mar 24, 2012 8:43 AM

  • Within Pro 9, how do I remove/delete default security settings?

    All,
    As a learning excercise, I recently password protected a document so that PRINT was disabled. However everytime I render a PDF, this security policy is applied by default requiring me to go the Security tab under Properties and select "No Security."
    How can I permanently deleted this policy so that it is no long applied to newly rendered PDFs by default?
    Thanks in advance!
    David

    I'm OK with how to remove the security settings from a document:  Documents > Properties (security tab; "No Security").
    What I'm looking for is the path to removing the security settings such that they are NOT applied when I convert a document to PDF. What is happening now is that when I convert a MS Word doc to PDF, the security settings are applied by default, which means I have to go the process, albeit a short one, of removing the security settings from the document - as referenced above.
    So again, if I simply launch Acorbat Pro 9 (without opening of a document), what is the correct path to removing (permenently) the security settings so that they are no longer applied to a converted document by default?
    Thanks in advance.

  • Obiee setting for reports in default pdf format rather than manually in pdf

    Hi All,
    Is there a way to set obiee to default pdf output rather than manually opening in pdf ?
    Thanks,
    Ud

    I think this good old tweak from Reinhard Franke still is worth a try:
    http://www.adobeforums.com/webx/.59b6778d
    "[HKEY_CLASSES_ROOT\Software\Adobe\Acrobat\Exe]
    There you will find the full path to the program IE will use (Acrobat or Reader exe)."
    And study this newer thread too:
    http://www.adobeforums.com/webx/.59b689ec/7

  • Default security policy 802.1x

    Folks,
    I just installed a 2100 controller and added a WLAN. I noticed that the default L2 security policy is 802.1x which is using WEP 104 keys. My question is where do we define the wep key on the controller. does that mean no client will be able to connect to the AP, unless he adds the key to the SSID?

    Does 802.1x always require a radius server? With a fully redundant network implementation I could see a Windows Radius server being the weakest link.
    For port security for a project I am working on I am searching for the best solution. I will shutdown unused ports. Allow only one mac-address (need to learn how to do this). I am also researching the cost effectiveness of implementing 802.1x security.
    James

Maybe you are looking for

  • IDE/SCSI Problems with Neo 4 Platinum/Sli

    I am routinely getting Event 11 and Event 9 errors in my event viewer which are basically "The controller detected an error on device " then lists a controller and a harddrive.   I never got errors like this on my old rig (an Asus A7Pro Motherboard)

  • Problem about tdp for sap

    I installed tdp for sap and scheduled a online backup ,  after the backup finished, I checked the log. all data files were backuped successfully.  but there is an error about rman.  I do not know how to do about that?  Could you help me?    I think t

  • Unix command output to a TextArea

    Hi, I would like to use the contents of the variable >>line<< to be displayed in a JTextArea in another class within the same package. Code: public class HostAction implements ActionListener { static String line; public void actionPerformed(ActionEve

  • How to maximize a window and can't be able to move it

    Hi everyone, I'm doing an HMI and what I want to do is to maximize a window. I can do it in the VI proprieties -> Window Run-Time Position -> Position: Maximized. The problem I get is when I run it, the user can move the window with the title bar. I

  • Cross Selling in IC Web Client

    Hi, I have defined the Cross selling association rules. Copied the standard Cross selling Method Schema, which has the permitted Function Modules. In IC Settings, Assigned the method schema to respective Sales Org and Txn type. Now when I am creating