Oracle Analytics Forum

Home Oracle Analytics and AI Oracle Analytics and AI Forums Oracle Analytics Forums Oracle Analytics Forum

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Is it possible to assign an OBIEE Application role to Active Directory group?

Received Response
21
Views
2
Comments
AM_1
AM_1 Rank 4 - Community Specialist
edited Aug 13, 2024 5:14PM in Oracle Analytics Forum

Hi!

We're implementing Active Directory authentication for OBIEE.

I would like to avoid using database authorization but rather manage OBIEE privileges by assigning users to Active Directory groups and then associate Active Directory groups with the application roles defined in the Enterprize Manager.

Is this feasible? Is this a good idea?

Thanks,

Alex

Tagged:

Answers

  • Gianni Ceresa
    Gianni Ceresa Mod

    Hi Alex,

    Not only it's a good idea, but that's how authentication and authorization generally works.

    In Enterprise Managers you will see the AD groups available as members of the application roles. So you map your AD groups to application roles and after you only manage your users in AD by adding them or removing them from AD groups. Inheritance will do the rest of the job.

  • AM_1
    AM_1 Rank 4 - Community Specialist

    Thanks Gianny!