Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Using Essbase filters to restrict access in OBIEE dashboards for multiple users

Received Response
11
Views
5
Comments
Sam999
Sam999 Rank 3 - Community Apprentice
edited Aug 13, 2024 7:08PM in Oracle Analytics Cloud and Server

Hi,

Need to use Essbase filters  to restrict access to data in OBIEE Dashboards so that users with no acess to particular members are not able to see any data for  multiple users.

Any suggestions on how to go about it.

Thanks!

Answers

  • cesar.advincula.o
    cesar.advincula.o Rank 6 - Analytics Lead

    Hello,

    As a any data source as a essbase,

    essbase1.png

    You could filter the data by the user, use  an NQSESSION. to get the session the correct access.

    Essbase2.png

    Kind Regards,

  • Sam999
    Sam999 Rank 3 - Community Apprentice

    Thanks a lot. Can you also elucidate on how to restrict the metadata too.

  • cesar.advincula.o
    cesar.advincula.o Rank 6 - Analytics Lead

    OK, you could restrict the metadata by "Application Role", you have to go to "Presentation" layer in your RPD, and need to define, Application Role,

    This link, could help you, please, follow up

    Introduction to Security in Oracle Business Intelligence - 11g Release 1 (11.1.1)

    metadataRestrictions.png

    Tell me, if you need more information.

    Kind Regards,

  • Sam999
    Sam999 Rank 3 - Community Apprentice

    Yeah, I need to replicate the above Metadata through groups. Can we do that ?

  • cesar.advincula.o
    cesar.advincula.o Rank 6 - Analytics Lead

    Hello Sam,

    - First, the implementation security and restricted metadata is by "user" and "application roles",

    Security.png

    - Second, we need to understand the bi security (  https://docs.oracle.com/cd/E14571_01/bi.1111/e10543/intromartin.htm#CACFIHEB ),

    whats about the relationship of Application Roles and Groups.


    BIGroups.png

    if you want to implementation the authorization in the metadata, there is ways:


    1. Implement a Session Inititialization Block, to get the Application Role of the user, you have to get an database table to get the Roles by user.


    GetRoles.png


    2. If your company has a LDAP Server, as a Microsoft Active Directory, Oracle Identity Management, an any others LDAP Server.

       You have to implement also the session Initialization Block to get the App roles.


    LDAPServer.png




    Kind Regards,