Hide ApplicationDB_HCM data source in BI data model creation

Pol Reddy

Description

HI Team,

With the elite roles like Application Implementation Consultant, BI Admin, we can query any table using BI Data model and see sensitive data like salary. We are looking to restrict this to unauthorized people even though they have access to write data model and allow only to authorized people based on other roles like HR specialist.

We tried hiding ApplicationDB_HCM data source, not successfull.

I know we already have enhancement request Bug 27359588. but I would like to know how other customers are handling this case. as it is exposing sensitive information.

Thanks,

Pol

Use Case and Business Need

Access to creation of BI data model creation will give access to sensitive tables like salary. 

Original Idea Number: f383bb5524

Naveen kumar 99

I would expect that Oracle allows customization of BI Admin & BI Author roles and taking out privileges shall ensure that sensitive tables data is not accessed.

Dharma Shanmugam-51434

This becomes a challenge when we have a Global Single Instance (GSI) having both ERP and HCM. We have to assign roles like 'Application Implementation Consultant' & 'BI Author' to consultants for maintenance and support. 

But we do not want them to query sensitive salary tables. We restrict this in the application by controlling what application roles they get. But in BI Publisher, they have open access. Can you pl update how this can be controlled?

Aditya Jena

This is a must requirement considering regulatory requirement to hide sensitive personal data.