Categories
- All Categories
- Oracle Analytics Learning Hub
- 33 Sharing Center
- 22 Oracle Analytics Lounge
- 258 Oracle Analytics News
- 45 Oracle Analytics Videos
- 16.1K Oracle Analytics Forums
- 6.3K Oracle Analytics Idea Labs
- Oracle Analytics User Groups
- 98 Oracle Analytics Trainings
- 16 Oracle Analytics and AI Challenge
- Find Partners
- For Partners
How to setup row level security in rpd
I have setup row level security in oracle analytics cloud rpd based on application roles but when i upload the rpd my filters dont seem to work, I wanted to know if any one else has run into this issue and how they were able to resolve it.
Best Answer
-
Please refer to product documentation and this blog to understand user/role setup in OAC:
0
Answers
-
@User_Q7YIK - Welcome to the Oracle Analytics Community!
Please re-validate the steps you followed using the documentation below:
Once confirmed, ensure that the user is assigned only the specific application role you're testing with. Then, check the session log to verify whether the data security filters are being applied in the generated query.
If the security is still not working as expected:
- Review other roles the user might be assigned.
- Remove those additional roles temporarily.
- Re-validate to confirm if any of them are overriding the expected security behavior.
Hope this helps!
Thank you for being part of the Oracle Analytics Community—please continue engaging with us.1 -
How are you testing this? Are you using a user that has the correctly granted application roles? Have you checked th query logs to see if the filtering is applied to your queries?
0 -
Hi, i am testing with myself and i still see the results. I have also tried to deny access to the subject area to myself and still getting access
0 -
I suggest that you create a test user that has the correct custom application role as it is quite possible that your account might have other roles granted to it. I'm assuming that you will have admin access as you mentioned that you made changes to the semantic model.
0 -
Quick question though, when you say to create a test user and a custom application, can you walk me through how to do that if you dont mind and also how to synchronize the new user / role with the rpd?
0 -
I have checked the session log and , my filters are not being applied
0 -
If your user has BIServiceAdministrator Application Role assigned then none of the data filters will be applied. You need to create a new user in IDCS and assign this user to a non-admin Application Role such as BIConsumer or BIAuthor and then check if the row level security is being assigned. You will have define this row level filter for the relevant app role in rpd.
0 -
sorry just curious what is IDCS and how do i synchronize the new user account with rpd application roles?
0 -
Hi Team,
We are implementing row-level security in OAC based on a custom control table in ADW within the EU Sovereign Cloud (Nov 25 release).
Here’s what we have done so far:Created a control table and an initialization block with a session variable to retrieve the current user and its corresponding business entity.
Applied a data filter at the Subject Area level for the BIConsumer role.
Created an OAC test user to validate access.Issue:
When testing with the OAC test user, the expected filter values are not applied, even though current_session.user correctly shows the OAC test user.
On further investigation, the query is generating a condition like:
(T1935.ENTITY = N'NA' AND T1935.ENTITY = N'SY')This results in no data being retrieved.
Initialization block query:
select VARIABLE_NAME, VARIABLE_VALUE from OAC_CONTROL_TABLE
WHERE OAC_USER_NAME='VALUEOF(NQ_SESSION.USER)'Please advise on the next steps. We have also raised an SR with the OAC Support team for assistance.
Regards,
Debasmita
0
