Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Change password by user in OBIEE 12c

Received Response
157
Views
13
Comments
Soheil Star
Soheil Star Rank 3 - Community Apprentice
edited Aug 13, 2024 5:30PM in Oracle Analytics Cloud and Server

Hi Guys

I'm interested to know if there is any way to users could change their password independently ?! I have read some articles regrading to develop java class by calling change password method from MBean server and deploy it on BI Server (https://www.rittmanmead.com/blog/2011/10/changing-your-password-in-obiee-11g/), and surprisingly another article from oracle which mention users could change their password easily from their Oracle Publisher dashboard (https://www.oracle.com/webfolder/technetwork/tutorials/obe/fmw/bi/bip/bip11g/gettingstarted11116/gs.htm#t1s6). But both of them first related to 11g version and secondly doesn't work for me!

Any idea to solve this problem in OBIEE 12c product ?

Thank is advance

«1

Answers

  • [Deleted User]
    [Deleted User] Rank 2 - Community Beginner

    There is another question you have to ask yourself first:

    Are your users really handled by the WLS Security Realm alone and not by a corporate LDAP / MSAD etc? And if "yes" - why?

  • Soheil Star
    Soheil Star Rank 3 - Community Apprentice

    The answer is 'Yes'. Imaging you are going to develop reports for board of director members ,so you create user manually in internal OBIEE LDAP, then some of them wanted to change their password ! And other same scenarios that need to create user manually in Realm and facing change password issue.

  • Joel
    Joel Rank 8 - Analytics Strategist

    I believe that @Christian Berg point is that in this case, you should consider managing user security in your corporate LDAP and integrate this into your OBIEE with SSO. This will mean that user security will be managed externally and users won't have the need for yet another user account.

  • [Deleted User]
    [Deleted User] Rank 2 - Community Beginner

    In that case you may want to be more precise than "doesn't work for me" because that doesn't work for helping you. What did you do? What fails?

    Because the MBean definitely still exists and can be accessed programmatically.

  • Gianni Ceresa
    Gianni Ceresa Mod

    Extending what Christian and Joel said, in your "imagine example" you are forgetting that authentication and authorization are 2 different steps.

    Authentication can (need?) to be managed by the enterprise LDAP/AD, but if you want to keep control of authorization you can perfectly do it and do not need to use the LDAP/AD groups. That's why the embedded LDAP in weblogic is a very minimalist one missing very simple basic LDAP functionality like changing password etc.

  • [Deleted User]
    [Deleted User] Rank 2 - Community Beginner

    It's this kind of thread that can be summed up with "let's forget reason and do precisely what is asked"

  • Soheil Star
    Soheil Star Rank 3 - Community Apprentice

    Joel, any suggestion how does handle externally security manager and integration with OBIEE SSO ?

  • Soheil Star
    Soheil Star Rank 3 - Community Apprentice

    Actually I needed some external resource and permission from my organization to handle with programming! But I think I should go through this solution

  • Soheil Star
    Soheil Star Rank 3 - Community Apprentice

    Gianni, any suggestion for external authorization ?

  • Joel
    Joel Rank 8 - Analytics Strategist

    This is the Oracle documentation with the detailed steps needed to set up SSO inOBIEE 12c:

    https://blogs.oracle.com/cealteam/obiee-12c%3a-configuring-kerberos-sso-for-obiee-12c