Suggestion on Object Level Security - Obiee 11.1.1.9 — Oracle Analytics

Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Suggestion on Object Level Security - Obiee 11.1.1.9

Received Response
42
Views
8
Comments
Maraprik
Maraprik Rank 4 - Community Specialist
edited Aug 13, 2024 6:16PM in Oracle Analytics Cloud and Server

Hey Gurus,

I have about 50 reports. part of one dashboard with multiple pages.

I have 25 users.

Each user has to have access to the report he/she creates. On average each user has two reports to his/her name. The user should see only his report and not see the other users reports.

Any suggestions on the best way to implement this. Please let me know.

Regards

Answers

  • [Deleted User]
    [Deleted User] Rank 2 - Community Beginner

    Multiple options but the easiest is to use the actual object permissions functionality and assign objects (like specific dashbaord pages or even analyses) to application roles equivalent to your user split or - if not possible differently - then on a user-by-user basis but I'd try to prevent this since it means a lot of detailled manual admin.

  • Gianni Ceresa
    Gianni Ceresa Mod

    In addition to what Christian said ... It looks like the perfect case for the "My Dashboard" page ....

    You say that each users has access only to the reports he created. So you don't have anything shared here, nobody has access to all the reports.

    So why each users don't just add his reports to his "My Dashboard" page?

    The way you describe it is like if they are just personal reports, so keeping them in "My Folder" is also the most natural ...

    "My Folder" & "My Dashboard" are protected by default, only the owner can access them.

  • Maraprik
    Maraprik Rank 4 - Community Specialist

    Hey Christian,

    thanks for the answer. just to clearly understand.

    lets say I have 50 reports and each user has access to about 2 reports. Ill have to create approximately 25 roles for the report split is it ? any other way to simplify this ?

    please let me know.

    thanks

  • Maraprik
    Maraprik Rank 4 - Community Specialist

    Hey Gianni,

    My Dashboard concept is good. i will definitely suggest this. lets see what turns up.

    thanks for the reply

  • Gianni Ceresa
    Gianni Ceresa Mod

    Yes, to keep it "clean" and maintenable you must create as many app roles as you have of different kind of access requirements.

    The good thing is that you can create as many roles as you want ....

    It's actually normal to have many app roles, even more in a case like your with non-additive security rules.

    Just imagine that if you manage it "by name" you end up with more or less the same amount of work ...

  • Maraprik
    Maraprik Rank 4 - Community Specialist

    thanks Gianni.

    appreciate the quick response. I was apprehensive about the approach. thanks for clearing it for me

    thanks Christian.

  • [Deleted User]
    [Deleted User] Rank 2 - Community Beginner

    No problem. Gianni always picks up my threads when I'm in meetings :-P

  • Gianni Ceresa
    Gianni Ceresa Mod

    But no I'm not his assistant or secretary