Security In Reports

Similar Messages

• Custom secure views report is not restricting the data

  Hi,
  I have created few custom secure views reports and in which I have used the per_people_f , per_assignments_f secure views but when I am running this report from different responsibilities like (US Resp, UK Resp) it is producing the same number of records. From US resp it should produce the US employees and from UK it should produce the UK employees but this is not happening currently.it is a simple sql script which I registered as sql*plus executable.
  Can any one suggest if I am missing some thing? Urgent help would be appreciated.
  Thanks,
  Ashish

  Pl post details of OS, database and EBS versions. How have you implemented security ? What kind of concurrent program are you using ? Pl provide details. Also see these MOS Docs
  How To Enable Hr Security on Custom Reports?          (Doc ID 369345.1)
  Understanding and Using HRMS Security in Oracle HRMS          (Doc ID 394083.1)
  Need Custom Security Profile To Restrict Based On Employees Organization          (Doc ID 445142.1)
  HTH
  Srini

• Function Security Menu Report in Oracle 11i -- URGENT NEED!

  Is there a way that I can run the Function Security Menu report in Oracle 11.5.10 for all responsibilities at the same time? We currently have 175 active responsibilities in the system.
  We also have to provide this info to auditors on a quarterly basis, and it would be great if I didn't have to run this report for each active responsibility. Is there any SQL Script avaliable for this?
  Any help would be very much appreciated?
  Thanks!
  FZ
  Edited by: 993391 on Mar 12, 2013 10:28 AM

  993391 wrote:
  Is there a way that I can run the Function Security Menu report in Oracle 11.5.10 for all responsibilities at the same time? We currently have 175 active responsibilities in the system.
  We also have to provide this info to auditors on a quarterly basis, and it would be great if I didn't have to run this report for each active responsibility. Did anyone wrote any custom queries to pull this information out for all responsibilities or any help would be very much appreciated? Have you checked the code in (Checking Functions Associated with a User Menu or a Responsibility [ID 948512.1])?
  Thanks,
  Hussein

• How to secure my report i published on the web

  Hi All -
  I installed Oracle10g Reports and forms standalone on my server and successfully published all my reports on it.
  Question:
  Can someone pls tell me how can I secure my reports on the web. looks like anyone can just copy my link and paste it on the web broswer and can open it.
  i.e. http://<server_name>:7778/reports/rwservlet?report=<report_name>.rdf&destype=cache&desformat=html&userid=<user_name>/<password>@<dbname>&paramform=yes
  Also, I did save the user id and password in cgicmd.dat file. But is it possible to have the web page prompt for a user id and password for the database or something everytime i try to open the link...Please respond ASAP..it required...
  Thanks in advance..
  Anuj Sharma

  It is possible to show web page where userid has to be entered before running the report. Please specify "userid=" in the URL or in the command file (cgicmd.dat) to get db prompt. For example,
  http://<server_name>:7778/reports/rwservlet?report=<report_name>.rdf&destype=cache&desformat=html&userid=&paramform=yes
  Other option secure it is either to use OracleAS Single Sign-On or security plugin. For more information on security plugin, refer to Chapter 10, "Securing OracleAS Reports of the Oracle Reports Publishing Reports to the Web" manual, available on OTN: Serviceshttp://www.oracle.com/technology/documentation/appserver101202.html

• Function Security Menu Report under SYSADMIN responsibility

  Friends -
  Using "Function Security Menu Report" i can able to find out what functions and menus are under particular responsibility.
  But we have nearly 100 responsibilities where i need to submit this requests more than 100 times.
  Is there any SQL Script avaliable for this.
  Please advise on this.
  Regards
  Satish

  Hussein -
  Thank you very much for quick response.
  I am looking for both Menu and Function is there is any SQL Query where i can execute in one report.
  Regards
  Satish

• Function Security Navigator Report

  Hi,
  I have to create a comma delimited flat file with the data generated by Function Security Navigator Report without any Title/subtitle. The executable is a rdf file (FNDMNNAV). Neither do I have Oracle Report nor do I know Oracle Report. Does any one have the SQL query to generate this report? Most likely there are more than one SQL queries in the rdf file - if this is so then can you please give the steps of how the data are selected for this repor?
  Thanks,
  JP

  Hi JP,
  You could change the output to XML and create a basic BI Publisher template to achieve your requirements.
  Check out my blog for a similar example:
  http://garethroberts.blogspot.com/2007/09/standard-report-to-csv-file-via-bi.html
  Gareth

• Using portal security with reports

  Can anyone let me know how to use portal for security in reports? Any documents where I can find the info.? Pls. help!!

  Check this link
  http://download-uk.oracle.com/docs/html/B10314_01/pbr_sec_arch.htm#1004903
  HTH
  Vinayak

• Testing oracle apps security in reports

  Hi,
  I have a report which is running fine in Report builder 6i and also in Oracle apps(this is a customized report for oracle apps).
  Now I need to test the security in Oracle apps. As per the advice provided in metalink I added
  1) added a user parameter P_CONC_REQUEST_ID
  2) added "srw.user_exit('FND SRWINIT');" to the BeforeReport trigger
  3) added "srw.user_exit('FND SRWEXIT');" to the AfterReport trigger
  But now when I try to run in Oracle apps it gives below error
  REP-1416: 'beforereport': User exit 'FND'. IAF GET: unknown column 'P_CONC_REQUEST_ID'.
  Please help on how to solve this issue. Any help is appreciated

  Thanks for the reply. The problem still persists.
  The same metalink gives another solution as below but when I add the below to the report I couldn't compile. It gives "identifier hr_standard.event must be declared". Anyone used this before, if so how to use the same.
  3. If the issue is not resolved try placing the calls mentioned in 2 with
  hr_standard.event('BEFORE REPORT');
  hr_standard.event('AFTER REPORT');
  Metalink is
  How To Enable Hr Security on Custom Reports? [ID 369345.1]

• Bug in securing pdf report

  Security feature in exporting pdf report is not work. For example to add password to pdf report it will be done but when I try to open that pdf report is opened without asking for password!!

  What version are you using?

• Profit center security for Report Writer reports

  We need to limit users access to profit center report writer reports.  We attempted to add values to security object K_PCA but this did not work.   I have heard there is a way to turn on objects for report writer checks but so far have been unable to figure out how this is done.

  Which release are you on and how have you defined the authorizations?
  If the st01 trace always returns 0 then chech the "reason code" (this is available since about 6 months).
  Manually you can check it in tcode auth_switch_objects if globally disabled for the client.
  Conversions to the new concept sometimes did this when they didn't want to use it.
  Retro-fitting is difficult because your hierarchies might be maintained in PROD but your roles in DEV.
  Tough call...

• Security for report group 6OBU (transaction S_ALR_87013019)

  I have a situation where a user with access to the transaction S_ALR_87013019, does not return any data during execution. Another user with much lesser access can return data with the same selection criteria.
  A security trace doesn't display any authorization failure. I believe there is a user exit EXIT_SAPFGRWS_001 which can be used to add some extra security for this report group but its not implemented.
  Are there any special user specific configurations which control display of data for this report?

  Hi Aninda,
  I agree. Authorization trace might not be appropriate in this situation.
  Also, user parameters are only to pass on specific values, such as company code, default layout etc and doesn't restrict the user from viewing a report.
  As mentioned in my earlier reply, the issue could be with a user exit where the user ID should be maintained in a table or the restriction is applied at the table level.
  The other issue could be with the version of SAP GUI. You may ask the user who has issue with viewing the report to login on a different system to identify if the issue is with the authorizations or the SAP GUI.
  Hope this helps!!
  Regards,
  Raghu

• Security related report in Report Web Part

  Hi,
  I have a document library hosting 10 reports with item level security. I want to set up only one page with ReportServer Webpart to display one of the reports out of the library according to the report security setting (dynamically). As I can only
  choose one (hard coded) report in the web part: how can I do that?
  Wolfgang

  Hi,
  Quote from the link : Report Viewer Web Part on a SharePoint Site
  http://msdn.microsoft.com/en-in/library/bb522800.aspx
  “You cannot link multiple reports to a single Report Viewer instance, but if you want to group reports together, you can create a dashboard or a Web Part page that embeds multiple Report Viewer Web Part instances on a single page.”
  Regards,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected] .
  Rebecca Tu
  TechNet Community Support

• Security on report server URL for SSRS

  I have a report which takes DEPARTMENT_ID as parameter. Users can only see report of their own department but problem is anyone can access the below URL and view other department's report.
  http://<server>/Reports
  OR
  http://<server>/ReportServer?/<FolderName>/Report&DEPARTMENT_ID=5
  Is there a way to make these URLs secure so only authorized users can access it? Or this option is not available in SSRS and I have to block access through firewall or something? Like disallowing access to this URL from all IPs and only allow my web server
  IP to access it and then I make a page in ASP.Net in which I show this report using Report Viewer?

  Hi,
  For this issue I'll suggest you to add one Unique Id in URL lets say id = "ykljlkl340kjkl".
  For this you have to follow below steps;
  1. In BIDS create one Report Parameter Name as ID with visibity = Hidden
  2. Tablix Properties -> Visibity ->  show Hide based on Expression -> iff(Parameter!ID.value="ykljlkl340kjkl",False,True)
  3. In Application ReportViewer Control will be only accessible if Id ="ykljlkl340kjkl" .
  Thanks
  Please Mark This As Answer or vote for Helpful Post if this helps you to solve your question/problem.

• Security Tracking report

  Hi Folks
  I would need some ideas with respect to the following
  I would like to know changes made to the following
  1. Organizational levels,
  2. Changes to roles (by means of addition or deletion of tcodes)
  3. Manual addition of objects to a role
  4. Change of Auth Field values for an object.
  I would like to have this information on a on-demand basis, In the sense I would like to have some kind of a report which I can query to have this information as and when required.
  I am aware of the AGR tables however am not sure about the relationship one has with another.I have a feeling that one can pull out details from these tables...  however dont exactly have a exact way to do it...
  Could you please share your thoughts on how I can approach this.
  best regards
  Ravi

  Hi Ravi,
  You can actually access change Documents in SUIM to extract a report on the changes made to Role, Filed Values, etc...
  But if you want to extract a report using tables, you can go for AGR* tables such as:
  AGR_1251        Authorization data for the activity group                
  AGR_1252        Organizational elements for authorizations               
  AGR_AGRS        Roles in composite role                                  
  AGR_TCODES           Assignment of roles to Tcodes                         
  AGR_USERS     Assignment of roles to users                        
  You can also write a Infoset Queries using SQ01, SQ02, SQ03 which would help you in getting a report from more than 1 Table at once.
  Thanks & Regards,
  Santosh

• Security: Migration Reporting problems

  Hi,
  we have migrated a test user to the new auth concept:
  Old authorization concept:
  User was restricted on material group (0MATERIAL) on infoprovider PRM_MPPS1
  We have created a new profile for the test user but we were not able to run any report. It seems to be that
  all authorization relevant caractericstics are needed for the query to run!
  Trace Quotation:
  Relevant Characteristics for Detailed Authorization Check  
  (Characteristics with Full Authorization Are Not Listed!)
  List of Effective Authorization-Relevant Characteristics for InfoProvider PRM_MPPS1:  
  0COMP_CODE
  0INFOPROV
  0MATL_GRP_4
  0SOLD_TO
  0WBS_ELEMT
  All Authorizations Tested
  Message EYE007: You Do Not Have Sufficient Authorization  
  No Sufficient Authorization for This Subselection (SUBNR)  
  Following CHANMIDs Are Affected:
  19 ( 0COMP_CODE )
  1065 ( 0INFOPROV )
  718 ( 0MATL_GRP_4 )
  695 ( 0SOLD_TO )
  88 ( 0WBS_ELEMT )
  Authorization Check Complete  
  why are these characteristics tested now after the migration? any idea or solution regarding this errors?
  thanks in advance
  Oliver

  Sorry - I missed part of that error message - here is the complete message:
  2006-06-15 08:54:32.844 Mail[338] Exception raised during posting of notification. Ignored. exception: * NSRunStorage, _NSBlockNumberForIndex(): index (1847) beyond array bounds (1000)
  /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin: can't map file: /Volumes/Firefox/Firefox.app/Contents/MacOS/plugins/MRJPlugin.plugin ((os/kern) invalid argument)
  ### MRJPlugin: getPluginBundle() here. ###
  ### MRJPlugin: CFBundleGetBundleWithIdentifier() succeeded. ###
  ### MRJPlugin: CFURLGetFSRef() succeeded. ###
  /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin: can't map file: /Volumes/Firefox/Firefox.app/Contents/MacOS/plugins/Default Plugin.plugin ((os/kern) invalid argument)
  /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin: can't map file: /Library/Internet Plug-Ins/QuickTime Plugin.plugin ((os/kern) invalid argument)
  /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin: can't map file: /Library/Internet Plug-Ins/Flash Player Enabler.plugin ((os/kern) invalid argument)
  /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin: can't map file: /Library/Internet Plug-Ins/Flash Player.plugin ((os/kern) invalid argument)
  dyld: /Volumes/Firefox/Firefox.app/Contents/MacOS/firefox-bin dead lock (dyld operation attempted in a thread already doing a dyld operation)
  Thanks for your help.