You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register
Get Started with Redwood for Oracle Cloud HCM   Begin Now
To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.

For more information, please refer to this announcement explaining best practices for getting answers to questions.

OTBI Security Risk - Seeded Reports Without User Security & OTBI Access for Employees

edited Aug 22, 2018 6:43PM in Reporting and Analytics for HCM 12 comments

Summary

OTBI Security Risk - Seeded Reports Without User Security & OTBI Access for Employees

Content

Hi All,

We have recently discovered that seeded Oracle reports do not use User Security to generate the results, therefore anyone who has access to “Reports and Analytics” in Oracle Fusion is able to generate data that they should not have access to. After some testing, we have discovered that even basic Employee User Account has access to Reports and Analytics. Since then we have hidden the link to Reports and Analytics so that employees or managers cannot access the reporting module via Navigator. However, if an employee or a manager inadvertently stumbled upon the direct link to Reports and Analytics or

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!