Categories
- All Categories
- 15 Oracle Analytics Sharing Center
- 15 Oracle Analytics Lounge
- 208 Oracle Analytics News
- 41 Oracle Analytics Videos
- 15.7K Oracle Analytics Forums
- 6.1K Oracle Analytics Idea Labs
- Oracle Analytics User Groups
- 76 Oracle Analytics Trainings
- 14 Oracle Analytics Data Visualizations Challenge
- Find Partners
- For Partners
Restrict LDAP users and shld allow only if user exists in external database tables obiee11g
Hi
Has anybody has the answer for this:-----
LDAP is working fine and users are maintained in groups in external database
I can restrict the users to the groups and roles as usual, who can see what reports or dashboards, this is also fine
Question :
Due to LDAP configured in our system, all the users in the company can see the reports, but I want to restrict others other then the users which i maintains in groups in external database
Please provide me ASAP with DOC or steps as it urgent for us.
Thanks & Regards
BK
Answers
-
Please avoid double posting !
Restrict LDAP users and shld allow only if user exists in external database tables obiee11g
(actually maybe triple posting with Needs to allow login to the LDAP users, only if he exist in external database tables in obiee11g )
0 -
They are not in the groups you created to view the reports still they can see the reports?
0 -
yes they are all in groups, I have a doubt but Please confirm, is it due to consumer role is open there in all the dashboard permissions along with myself defined roles to access the dashboard
so shld I have to remove the consumer role access to the dashboards and keep only myself defined roles for all the dashboards
is it becoz of consumer role open all the LDAP users are able to see
Thanks & Regards
BK
0 -
Are all your users coming from AD assigned to a group which is added in BI Consumer role?
0 -
I have not assigned anybody to the consumer role,but i have defined my own roles and had attached groups and users to that and cld able to restrict these users in a fine fashion
and the LDAP users who are not related to my roles or grps can able to see my reports.
is it by default the consumer role will be attached to all the LDAP users and as well the consumer role is open in all of my dashboard permissions
is it the reason they can see all the reports..?
0 -
If they are getting assigned to consumer role and consumer role has access to the reports then that is the reason why they are able to see the reports. I am still not sure why they are getting assigned to consumer role. Can you get in Enterprise manager --> coreapplications --> Application roles and see which roles/groups are assigned to BIConsumer role.
One more thing you can do is if you have act as or impersonate enabled, get in with user whom you dont want access to reports go to my account and check if he is assigned to BI Consumer role
0 -
Did you remove authenticated user from BI Consumer app role?
And why do you keep the default roles if you don't use them?
As said this morning: setup your security correctly! If you don't use at all the default app roles and you defined all your owns then delete them (mainly if you don't look inside to see which one inherit from which other like authenticated user and BI Consumer OOTB).
PS: you don't take the time to answer to your other double posts, so at least go and close them !! (don't forget the word "community" in OTN being a community ...)
0 -
See? THIS is why ou never open mutliple threads! Two discussions ongoing and two places where help is offered and you respond twice to everything even if things have already been mentioned...
0
