Row Level Security Not working for the ECC table.

Similar Messages

• Row Level Security not working for SAP R/3

  Hi Guys
  We have an environment where the details are as mentioned below:
  1. Crystal Reports are created using Open SQL driver to extract data from SAP R/3 using the SAP Integration Kit.
  2. The SAP roles are imported in Business Objects CMC.
  3. Crystal Reports are published on the Enterprise as well.
  3. Authorization objects are created in SAP R/3 and added as required for the row level security as mentioned in the SAP Installation guide as well. The aim is when the user logs into the Infoview and refreshes the report he should only see data that he is meant to so through the authorization objects.The data security works very much fine when the reports are designed directly on the table but when the reports are built on the Business View it doesnt work hence the user is able to see all data.
  Any help in this issue is greatly appreciated.
  Thanks and Regards
  Kamal

  Hi,
  In order for row level security to work for you using the OpenSql driver, you need to configure the Security Definition Editor on your SAP server.  This is a server side tool which the Integration solution for SAP offers as a transport.
  This tool defined which tables are to be restricted based on authorizations.
  However since you are seeing the issue on reports based on Business Views, you need to identify whether the Business View is configured in such a way where the user refreshing the report is based on the user logging into Infoview.  If the connection to your SAP server is always established with the same user when BV is used then you security definition is pointless.
  You can confirm this by tracing your SAP server to identify what user is being used to logon to SAP to refresh the reports.
  thanks
  Mike

• Row level security not working if I hit the aggregate

  I have applied row level security on presentation layer , however it does not work if the report hit the aggregate any idea on this...

  Hi Ingo,
  Security is set up using /crystal/rls transaction. A custom auth object is used for checking the company code with a single field "BUKRS".
  This custom auth object is maintained for the PA0001 table.
  This object is added at the role level with the restricted access to the Company Code..

• Obi 11g row level security not working

  All,
  I am very familiar and have worked with obi 10g row level security and it works pretty easily. Now in 11g not so easy. I am basically setting permissions on data filters on app roles as per the new 11g instructions and meta data guide, however, I never see the filters being applied in the report and also in the nqquery.log. I have tried in vain, and nothing. The filters are never being applied for the test user. I even verified the user is in the specified app role via their my account->app roles tab. Now has anyone had this experience or now is there something that must be done additionally now.
  Very frustrated... ;(

  Ok, so I have found the solution and ultimately the answer to why the object level and row level security was not being applied. It so happens that the app policy: 'resourceType=oracle.bi.server.permission, resourceName=oracle.bi.server.manageRepositories all' not only allows the management and access to online RPDs; but, IT ALSO DOES NOT APPLY SECURITY/PERMISSIONS IN THE RPD TO THAT USER thus you are super user. So the OOTB BIAdministrator app role which my AD user was being assigned never had any security applied due to this. How I tested:
  1) I created a test user
  2) Assigned that user to the BIAuthor app role and saw that they had the security applied that I was testing, which was simple object denial and row-level security to just one year on the date dim.
  3) Since it was working, I then assigned that user to the BIAdministrator role. This produced that the test user now does not have any restrictions that I set and that were working before. Thus, security/perms in the RPD are not applied.
  4). I removed the user from the BIAdministrator app role, kept in the BIAuthor app role and then created new test app role. I mapped that user to this new role along with the BIAuthor role. I then proceeded in creating new app policy with just that policy and assigning the new app role to it.
  5) I logged into the presentation services again with this test user after assigning to new app role and policy. My test user again does not have the security being applied and does not get any perms/security that I set and applied in the RPD. On top of that my test user is now able to login in online mode to the rpd via the bi admin tool.

• Crystal reports LOV cascading prompts row level security not working

  Crystal report LOV cascading prompts with row level security is not woking when the crytal report cache server/page server cache (Oldest On-Demand Data Given To a Client (in minutes)) is turned on. But its working fine when the cache is turned off.
  Using XIR2 environment.
  Appreciate the response.
  Thanks
  Chenthil

  Hi Chen,
  In terms of what could be done on the Crystal Reports end, there is no such controls available.  However, your question may be better answered if it was posted to our Business Objects Enterprise forum. 
  It is at "BusinessObjects Enterprise Administration" section of the forums.
  FYI.

• BI Publisher configured with BI Server Security not working for the admins.

  Hello Everyone,
  I have configured the BI publisher to work with the BI server security. Everything is working well with the exception that all users part of the BI Server "Administrators" group are unable to login and get the following error message (message displayed below). If a user is removed from the "Administrators" group then they are able to access the BI Publisher. As indicated everything else is working for exemple all users part of the 'XMLP_Admin' group all have access to the "ADMIN" tab in BI Publisher. The issue seems to be limited to the users part of the BI Server "Administrators" group.
  - Has anyone else ever had this issue?
  - Is this a normal behaviour of BI Publisher?
  - Or the security groups for the BI Server and BI Publisher conflicting?
  Thanks in advance for everyone's help.
  Best regards,
  FBELL
  *********************** Error Message ***************************************
  Oracle BI Publisher Enterprise
  Reporting Login: Login failed: Please contact administrator for your username/password.
  Error Details
  Error Codes:
  ***************************************************************************

  Thanks Madan for your help.
  The group XMLP_Admin was already created and working. The conflict was with security groups outside BI Publisher. What I ended up doing was recreating the principals.xml and security.xml files and rsetting the roles and permissions. Surprisingly that fixed my problem.
  Best regards,
  FBELL.

• Item level security not working when placed in a portlet page

  I have three page links linking to separate pages and have two of them with item level security turned on for specific groups with view privilges. I have the access for those groups with view privilges in the page level as well. I have published that as portlet and placed the portlet in another page which has view priviliges for the groups specified in item level as well.
  But I notice that when i place the portlet in a page, the item level security is not working.
  Item Level Security Not Working for Items Placed on a page and published as portlet and placed in another page. Is there some work around for this.
  Thanks
  Valli

  Would you please clarify for me? Is the problem that unauthorized people can see the portlet, or that unauthorized people can see the links?

• I have an event in my calendar that was sent by someone who does not work for the company anymore and I am reminded 2 times a week. How can I remove it?

  I have an event in my calendar that was sent by someone that does not work for the company anymore and I am reminded 2 times a week. How do I delete it?

  Tap on the event to open the event. Click the 'Edit' button in the event bubble, then press the 'Delete Event' button at the bottom of the Edit pop-up. It's a little different for events that come through Microsoft Exchange, you tap the event to bring up bubble and click the 'Details' button, and then press 'Decline' to remove the event.

• I have an apple ID which I use to sign into icloud for my iPad and iPhone.But when I use the same ID for setting up iCloud on my Macbook it says INCORRECT ID or password, try again. I tried changing my passwords but it does not work for the macbook.

  I have an apple ID which I use to sign into icloud for my iPad and iPhone.But when I use the same ID for setting up iCloud on my Macbook it says INCORRECT ID or password, try again. I tried changing my passwords several times but it does not work for the macbook.

  You will have to provide the correct password to delete the existing account, if you have tried but are not getting the password reset email, contact Apple for assistance by going to https://expresslane.apple.com, then click More Products and Services>Apple ID>Other Apple ID Topics>Lost or forgotten Apple ID password.

• Calendar Issues - "Repitition is not working for the item you tried to access"

  I ran into an interesting error when troubleshooting a calendar issue today, wondering if anyone has seen it.
  Exchange 2010 SP2 latest RU, Outlook 2010
  User changes then start time for a recurring meeting, changes in everybody's calendar but hers 9still shows in her calednar as the original start time)
  Logged into OWA to see if her claendar reflected the correct start time there - no, still  shows the old start time.  So I open the meeting, have a quick look, and the following error pops up:
  "Repitition is not working for the item you tried to access.  It's possible either the start or end date are not correct"
  Has anyone seen this error in OWA before?
  TAG

  Hi,
  Please double check whether the updated start time and end time are changed properly in attendees’ calendar. Also confirm whether the updating message is in the organizer’s sent items both in OWA and Outlook.
  Thanks,
  Winnie Liang
  TechNet Community Support

• How to check the row level security in TOAD for oracle

  Hi ,
  for ex, i have 2 types of users
  normal user and super user
  super user can see the group set (some column name) created by normal user
  but normal user can not see the set created by super user
  this set crestion aslso has 3 types "U','P',S'
  P & S can be viewed by even normal user
  but U should not
  so here we are having some row level security for the normal user .....
  So, in TOAD for oracle how to check that......
  Let me know if i'm not clear

  Like
  I'm the super user....
  And some records are inserted to a table by different users ('a' , 'b', etc....)
  So,if user 'a' logins then he can be able to see only the records inserted by 'a' only...
  how to see in TOAD where such type of scripts (filter conditions) are written.....

• Timing of text box will not appear.  My text boxes stop working on slide 5 and they will not work for the remainder of the slide show.

  Timing of text box not working.  I get the first few slides to work and then on slide 5 my text boxes will not appear.  And they do not appear for the rest of the slide show.   Help anyone.

  Text caption is timed to appear at 2 seconds, but you have a click box at 0sec. Its duration is very short, which means that I cannot see if there is a pause. I suspect this click box is pausing at the end of its timeline, which is at 0.3secs and the Text caption at 2 seconds will not appear before the user has clicked on that click box. The timeline is the core of Captivate, learn at least how to read it.
  Tiny Timeline Tidbits - Captivate blog
  If you want the green text caption 'Click on...' to appear right at the beginning of the slide, you have to check its Timing accordion: set it to start at 0 secs instead of 2 secs and extend its duration to the 'rest of the slide'.
  I don't know what is in the Group. That group and the HIghlight box will disappear at 3 seconds. Or maybe the action that is triggered by the Clickbox is different from 'Continue'?
  Lilybiri

• How To Setup User Row Level Security In Answers From Values In Table

  I am trying to setup row level security when a user logs into BI Answers. Basically I want the user to create any report that they would like but only see the data that they are associated to being retrieved in the Answer Report results. I have users stored in an Oracle authentication table where they have multiple values for schools that they can view. I have data in my RPD file that contain tables with multiple rows for schools. What I would like is to capture the associated school values for the user logged into BI Answers and place a filter on the data being retrieved in the RPD file to only show rows for the user's associated schools. Can I add a WHERE clause on the Business Model and Mapping layer of the RPD that would retrieve the multiple associated schools in my authentication table and filter/match them (IN clause maybe) to the school values in the RPD data being retrieved?
  Thank you in advance for any information you my have to help me along,
  Kyle

  Turribeach,
  I appologize, I did not use those exact words to search on in the forum. I should have and what I did use didn't turn anything up for my situation.
  Thank you for the link. It helped me find the below link which describes the setup in detail and resolved my issue:
  http://oraclebizint.wordpress.com/2008/06/30/oracle-bi-ee-1013332-row-level-security-and-row-wise-intialized-session-variables/
  What I needed was a row-wise variable/initialization block that stored the multiple school values for my logged in user. I then edited the "Content" tab of the Logical Table Source with a WHERE/IN clause that filtered down the result set based on my variable/initialization block SQL query.
  This solution works great!
  Thanks again!

• Row-level Security Filters applied to Columns and Tables only? no Areas?

  Good day all,
  Just quick question (obiee 10.3.3.2) - Is there a way to edit row-level security using Whole subject areas (instead of bringing in the individual Fact tables and applying filters by copying/pasting them).
  Follow up question - if I have nested facts in presentation layer (ones preceding with "-" - do I specifically add them to conditions, or would they be inherited by only including parent fact)?
  Thanks!
  Message was edited by:
  wildmight

  I'm not sure how that would help; by using the Faculty_ID Session Variable I can identify the CRN and Term of all courses a faculty member is teaching. But I don't think that has to do with the problem I am having?

• Time series functions are not working for fragmented logical table sources?

  If i remove that fragmented logical table sources, then its working fine.
  if any body know the reason, please let me know.
  thanks and regards,
  krishna

  Hi,
  is because the time series function are not supported for the framentation content, see the content of the oracle support:
  The error occurs due to the fact the fragmented data sources are used on some Time series measures. Time series measures (i.e. AGO) are not supported on fragmented data sources.
  Confirmation is documented in the following guide - Creating and Administering the Business Model and Mapping Layer in an Oracle BI Repository > Process of Creating and Administering Dimensions
  Ago or ToDate functionality is not supported on fragmented logical table sources. For more information, refer to “About Time Series Conversion Functions” on page 197.
  Regards,
  Gianluca