2 Replies Latest reply on Feb 26, 2013 1:32 PM by Maraprik

    OBIEE 11 1 1 5 security issue.

    Maraprik
      We have 3 users

      12345 has access to one country say India
      67890 has access to one country say china
      98765 has access to two countries. say india and china

      These were created in the console.

      I have created a row wise initialization bolck.

      SELECT 'COUNTRY',G_COUNTRY FROM GROUPMEMBERS,
      GROUPS
      WHERE
      GROUPS.G_NAME = GROUPMEMBERS.G_NAME
      AND G_MEMBER= ':USER'

      I created two groups IN_USER, CN_USER for each country. i assigned the users to respective groups in the console. Created roles in the EM and mapped them to these groups with the same name. I then synched it to the RPD and then added the data filter based on country dimension saying country code = VALUEOF(NQ_SESSION.COUNTRY).

      Now when I login as a user with 1 country access say india, there is a no facts at requested level error. Now I go ahead and provide BIAUTHOR to the user and then login. I can see the reports working but bringing back data for all countries. I remove author and say BICONSUMER, in answers the report brings back only one country from country dimension but in the dashboard i get the same error as before.

      What is this behaviour. The same setup in 11.1.1.6 works like a charm.

      This when queried in a column or a filter explicityly brings results. for example if I add it to a report as filter (VALUEOF(NQ_SESSION.COUNTRY), it works fine. It works fine when I add it to a dashboard prompt. It works when I add it to the logical source as where clause except that weblogic user gets an error all the time(IS THERE A WAY TO CORRECT THIS?).

      I am not able to understand this. Please help me with a solution.