Could elaborate your statement of SSO on EBSr12 ?? There are multiple SSO options that could be used in EBS in conjunction with OBIEE. Are you referring to any particular one .?
Let us know.
We dont have sso enabled either in EBS or at OBIEE Side, so just wanted to cross -check if its a pre-requisite for the integration.
Let me know , if we have to get the sso enabled at any of the sides.
Nope, Standalone EBS can be integrated with Standalone OBIEE without any SSO methods by using its in built the ICX based authentication of Oracle Ebiz native. Users would who would be created in EBS and using EBS forms and reports would navigate to OBIEE analytics by the ICX session cookie which is passed to OBIEE by initialization blocks to validate the EBS security context and authentication is approved once the validation is completed. This is a simple poor man's EBS to OBIEE integration. :)
Coming to authorization you need to create Responsibilities in EBS which would also be created with the same name in EM ( FMW console ) and assign your respective permissions to reports and further apply data level security if you have users vs your data lvl security criteria stored in a table.
I am assuming this is not OOTB stuff because that comes with everything pre-built and you just need to configure.
Hope this helps.! Mark if it does
Its OOTB . We are using OBIA 188.8.131.52 with EBS r12... but havent been able to get it fully working...
like for eg... we can navigate from EBS to OBIEE and see Dashboards... but now cant login to OBIEE directly as weblogic user on http://localhost:9704/analytics , although weblogic user can login to console and em.
or in other words, Is It Possible For Non-EBS Users To Access OBIEE By Entering Their Credentials Directly With OBIEE?
Yes, WLS authentication providers take precedence over Initialization block based authentication in the new 11g security arch. Unless you are forcing this EBS init block by setting "Required for Authentication" for EBS Security Context init block.
Coming to Default authenticator users in WLS they should be authenticated by setting the Identity store provider configuration to use multiple authentication methods by adding virtualize = true property.
Try the above settings and restart your server stack. Let me know if you get any error logging in as weblogic.
If we have to integrate security with EBS, isnt it mandatory to check "Required for Authentication" for the EBS Security Context init block? If its not mandatory, then how will security integration between obiee and ebs work otherwise.
Required for Authentication was designed to be used whenever additional session variable besides USER session variable would be used to enforce authentication.
If the init block has ":USER" as one of the session variables for the init block, "Required for authentication" is automatically used- so there is no need to select "Required for Authentication". Since EBS Security Context IB would be using :USER session variable in its targets, unchecking this flag would not cause authentication failure.
The BI server will allow the following users to login:
1.WLS users (such as weblogic/Admin)
2.Users from EBS SSO (having the USER session variable) are successfully authenticated.
Mark if answered. Try it in your test instance and let me know the results.
Mine is a similar situation where EBS and Non-EBS users need to be authenticated. EBS integration works perfect but can't see the OBIEE login page anymore for Non-EBS weblogic users. Any reason why i don't see OBIEE logon page?