Hi Guys,

I have accidentally deleted BISystem Application Role from EM Console. But, gone through couple of posts and recreated the Application Role and assigned the BISystemUser to the role.

In a nutshell, I did the below steps.

1. Stop BI Service

2. Create a Role and member with BISystem User

3. Add the for policies for the role

•oracle.bi.scheduler.manageJobs

•oracle.bi.server.queryUserPopulation it will not shown in list you can add it manually using following parameter

permission class: oracle.security.jps.ResourcePermission

Resource type : oracle.bi.server.permission

Resource Name: oracle.bi.server.queryUserPopulation

Action : _all_

• oracle.bi.server.impersonateUser it will not shown in list you can add it manually using following parameter

permission class: oracle.security.jps.ResourcePermission

Resource type : oracle.bi.server.permission

Resource Name: oracle.bi.server.impersonateUser

• oracle.bi.server.manageRepositories

• EPM_Essbase_Administrator

4. Start BI Service

But, I am unable to launch the login page of BI Presentation Services.

I got the below error from bi_server1-diagnostic.log file and it looks like the user BISystemUser is still having an authentication issue with server.

Please note that, I have not restarted the server. Just restarted the BI Services.

[2016-01-27T13:02:53.544+04:00] [bi_server1] [WARNING] [] [oracle.j2ee.ws.common.jaxws.JAXWSMessages] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 8b2c6332e32ecb3b:-3907915c:1527c794733:-8000-000000000001717e,0] [APP: bisecurity#11.1.1] [J2EE_APP.name: bisecurity_11.1.1] [J2EE_MODULE.name: bisecurity] [WEBSERVICE.name: SecurityWebService] [WEBSERVICE_PORT.name: SecurityWebServicePort] Exception while executing the business logic: SecurityService::checkPermission [OBI-SEC-00060] Current user BISystemUser is not authorised to perform impersonation.

[2016-01-27T13:03:04.954+04:00] [bi_server1] [NOTIFICATION] [] [oracle.bi.security.service] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 8b2c6332e32ecb3b:-3907915c:1527c794733:-8000-000000000001718f,0] [APP: bisecurity#11.1.1] [J2EE_APP.name: bisecurity_11.1.1] [J2EE_MODULE.name: bisecurity] [WEBSERVICE.name: SecurityWebService] [WEBSERVICE_PORT.name: SecurityWebServicePort] SecurityService::checkPermission [OBI-SEC-00060] Current user BISystemUser is not authorised to perform impersonation.[[

oracle.bi.security.service.UnauthorisedAccessException: SecurityService::checkPermission [OBI-SEC-00060] Current user BISystemUser is not authorised to perform impersonation.

        at oracle.bi.security.service.AbstractSecurityServiceAction.checkPermission(AbstractSecurityServiceAction.java:231)

        at oracle.bi.security.service.AbstractSecurityServiceAction.enforceImpersonateUser(AbstractSecurityServiceAction.java:257)

        at oracle.bi.security.service.GetRunAsUserAction.performAuthorisationChecks(GetRunAsUserAction.java:37)

        at oracle.bi.security.service.AbstractSecurityServiceAction.invoke(AbstractSecurityServiceAction.java:154)

        at oracle.bi.security.service.SecurityServiceBean.getRunAsUserWithLanguageAndProperties(SecurityServiceBean.java:484)

        at sun.reflect.GeneratedMethodAccessor4206.invoke(Unknown Source)

        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

Am I missing any step in the process. Also, I have verified the steps in couple of discussions and few other blogs.

Many Thanks

Prasanna