OBIEE - Security

About

To determines who has the ability to view data and objects, you can combine several parameters configuration on different security levels:

• Object Security: business logic security (repository) and catalog object security (presentation service),
• Data Security: column (include in the business logic security) and row security (through repository filter dependent of the login)

The security process is made up of two sub-process:

• authentication of the user. Is the user the right person ?
• authorization of the user. Has the user the right to:
  • see this object (Object Permission on column, reports, …),
  • see this data (Data Permission),
  • perform this actions (Application Permission).

The security management in OBIEE is based on the use of this three variables :

• USER
• PASSWORD
• GROUP

Variable by security process:

More … OBIEE 11G - Security

Articles Related

• OBIEE - Connection Pool
• OBIEE - Why I have by default No Privilege on all object ?
• OBIEE - The Security Manager
• OBIEE - How to define one different database credential for each user (the shared logon) ?
• OBIEE - How to define the BI server security to add automatically a filter when a column is added to an answer (row security level)

Documentation / Reference

• Fusion Middleware Security Guide for Oracle Business Intelligence Enterprise Edition (The reference)
• Server Administration Guide - page 314 - Security in Oracle BI
• Server Administration Guide - page 329 - Managing Query Execution Privileges
• OBIA Security Guide
• OBIEE security guide
• Venkatakrishnan J - Oracle BI EE 11g - Security Auditing
• What parameters should be set to make the privilege changes reflect in OBI Analytics, in a short span of time?