Oracle^® Business Intelligence Applications Installation and Configuration Guide > Integrated Security for Oracle BI Applications >

Filters for Oracle BI Security Groups

In addition to initialization blocks that implement data-level security in the Analytics repository, there are pre-configured groups (for Siebel or Oracle E-Business Suite application based data warehouses) that have been set up with filters on several logical tables. For Position based security, these groups are:

• Primary Position-Based Security
• Hierarchy Level (Base)
• Hierarchy Levels 1 to 8
• Hierarchy Level (Top)

The first group was used prior to the 7.9 release as the main group for position based security, and the Administrator was responsible for adding responsibilities to this group. In this release, the ten new groups replace Primary Position-Based Security.

For these new groups, users are assigned dynamically to one of these groups, based on their level in the Position hierarchy. The filter condition for these groups is defined using the following Security dimension for fact tables:

Core."Dim - Security Dimension"."Current Base Level Login" = VALUEOF(NQ_SESSION."USER") or the corresponding W_POSITION_DH alias for a dimension: Core."Dim - Opportunity"."Base Level Current Login" = VALUEOF(NQ_SESSION."USER")

Another group named Executive Visibility enables executives to be exempted from these data filters, using a filter on the same set of columns/tables as the Hierarchy level groups. The filter condition for this group is 1=1 for all tables, and given that the Oracle Business Intelligence server joins different filter conditions for the same user with an OR, being a member of the Executive group will nullify any data filter on the table imposed by the Hierarchy level security groups. The Administrator determines which OLTP responsibility should be added to the executive group.