Hi Thomas, Yes, we have custom "Admins" who really don't need all of the privileges of an OOTB administrator. Essentially, they are a type of "Super Author," as you suggest, who may, one day, be allowed to work in the RPD, but are still proving themselves. Thanks, Chad

Well, after a bit of research it appears that the policy - resource name: oracle.bi.server.manageRepositories allows users to bypass data filters on roles. Since it is a permission on the policy belonging to the BIAdministrator grant, any others created like it will inherit it. Of course, it does enable quite a few other…

Not that I can see . . . I'm not sure if this would be impactful, but we do "Create Like" the vanilla roles for both the application roles and the associated policies.

Hi! Unfortunately, here's the set-up for the Authenticated User and the roles that have the data filter applied. All three roles have the same access level, and the Authenticated User is set to "No Access" . . . Any suggestions? Thanks!

@Christian Berg & @Gianni Ceresa I hadn't looked at Authenticated User . . . I'll test over the weekend and update the question with my results.

Sorry. Multiple fires today. So, let me see if I understand, even when the data filter is applied to multiple roles, Administrators bypass the data filter? For example: Administrator_Role_A is a member of Author_Role_A, and Author_Role_A is a member of Consumer_Role_A. Administrator_Role_B is a member of Author_Role_B, and…