Restrict access to Visual Analyzer

User551626-OC · Jun 5, 2017 2:54PM

Hi

we are using OBI 12c 12.2.1.0.0 on Oracle Linux.

We want to restrict access to VA and used Doc ID 2102444.1, but BIConsumer is still able to access VA.

Then we restricted SOAP Access to Administrator role only in the web catalog - Privileges section as well, but no luck.

Looking for any other pointers before I raise a SR.

Thanks!

Carsten Weber · Jun 6, 2017 4:50AM

I would think you can disable access by not giving the role policy called "visualanalyzer.gernalAccess" within Enterprise Manager:

When disabling this policy for a role it still shows the link on your BIEE homepage but when following it, it will show up a message with unsufficient permission level.

[Deleted User] · Jun 6, 2017 6:36AM

I'd say it's better to actually go over permission sets rather than single permissions:

revokeEntitlement(appStripe="obi", principalClass="oracle.security.jps.service.policystore.ApplicationRole", principalName="YourAppRolleNameHERE", entitlementName="va.author")

User551626-OC · Jun 12, 2017 2:32PM

Thanks Christian.

How can I revoke this?

Can you guide me? Is this a change in a file or a change I make from web logic console?

[Deleted User] · Jun 13, 2017 1:58AM

I literally just sent you the command in my last post :-D

What's ambiguous about it? Doc states precisely the same.

Also: Come on...you're Oracle. You should even know more about the MOS Doc Note that treats this subject than I do as an outsider.

User551626-OC · Jul 6, 2017 1:43PM

We had done the permission changes but that did not help.Oracle has a patch for 12.2, they gave us patch for 12.1 and that worked.

[Deleted User] · Jul 7, 2017 1:52AM

@User551626-OC

For the benefit of all other users could you post the patch number?

Oracle Analytics Cloud and Server

Categories

Restrict access to Visual Analyzer

Answers