Authentication in an OBIEE context.
The goal of the authentication configuration is to get a confirmation of the identity of a user based on the credentials provided.
In OBIEE, the credentials provided are hold in this two variables:
The authentication process is managed by the BI Server.
The legacy authentication methods supported by BI Server are:
- External LDAP-based directory server
- External initialization block authentication
A user can be defined:
- in the repository
- or in an external source (such as ldap, external table, …)
If the user does not type a logon name, then OS authentication is triggered, unless OS authentication is explicitly turned off in the NQSConfig.INI file.
Additionally, OS authentication is not used for Oracle BI Presentation Services users. (For more information, refer to OBIEE Deployment Guide)
The Oracle BI Server populates session variables using the initialization blocks in the desired order that are specified by the dependency rules defined in the initialization blocks.
If the server finds the session variable USER, it performs authentication against an LDAP server or an external database table, depending on the configuration of the initialization block with which the USER variable is associated.
Oracle BI Server internal authentication (or, optionally, database authentication) occurs only after these other possibilities have been considered.
The Oracle BI Server and Oracle BI Presentation Services client support industry-standard security for login and password encryption.
When an end user enters a login and password in the Web browser, the Oracle BI Server uses the Hyper Text Transport Protocol Secure (HTTPS) standard to send the information to a secure port on the Oracle BI Presentation Services.
From the Oracle BI Presentation Services, the information is passed through ODBC to the Oracle BI Server, using Triple DES (Data Encryption Standard). This provides a high level of security (168 bit), preventing unauthorized users from accessing data or Oracle BI metadata.
Unable to Sign In An invalid User Name or Password was entered Unable To Sign In. An Error Occurred During Authentication