Bookshelf Home | Contents | Index | PDF     

Oracle® Business Intelligence Enterprise Edition Deployment Guide > Enabling Oracle Single Sign-On for Oracle Business Intelligence > Configuring BI Presentation Services to Use the Impersonator User >

Configuring Oracle BI Presentation Services to Identify the Credential Store and Decryption Passphrase

BI Presentation Services must be directed to the credential store that contains the impersonator user credentials. This is done by setting parameters in the BI Presentation Services configuration file, instanceconfig.xml. In addition, the passphrase that BI Presentation Services will use to decrypt the impersonator password credential must be specified.

The default location of this file is instanceconfig.xml file for editing. This file is located in the OracleBIData\web\config directory on Windows and in the OracleBIData/web/config directory on Linux or UNIX. This directory structure is the same on Linux platform.

NOTE:  You must perform this configuration for all instances of BI Presentation Services in your deployment.

To configure Oracle BI Presentation Services to Identify the Credential Store and Decryption Passphrase

  • Locate the <CredentialStore> node within the config.xml file.
  • Specify attribute values as shown in the following example.

    If the <CredentialStore> node does not exist, create this element with sub-elements and attributes with attribute values given in the following example.

    <WebConfig>
       <ServerInstance>
          <!-- other settings ... -->
          <CredentialStore>
          <CredentialStorage type="file" path="<path to credentialstore.xml>" passphrase="<passphrase>"/>
          <!-- other settings ... -->
          </CredentialStore>
          <!-- other settings ... -->
       </ServerInstance>
    </WebConfig>

Table 14 summarizes the attributes and attribute values for the CredentialStorage element. For detailed information on the CredentialStore and CredentialStorage elements of the instanceconfig.xml file and for their settings when credential stores other than the XML file store are used, see Oracle BI Presentation Services Credential Store.

Table 14. Attributes and Attribute Values for the CredentialStorage element
Attribute
Attribute Value
Description

type

file

This describes the type of credential store. Set to file for the proprietary XML file credential store.

path

<path to XML file credential store (credentialstore.xml)>

Location and filename for the XML file credential store. For example, OracleBIData_HOME/web/config/credentialstore.xml>

passphrase

<passphrase>

Determines the passphrase used to decrypt encrypted files. Provide the value entered in step 4 under topic Adding Impersonator User Credentials to Oracle BI Presentation Services Credential Store. In the example provided, this value is another_secret.

After modification as described above, instanceconfig.xml contains entries as shown in the example:

<?xml version="1.0"?>
<WebConfig>
   <ServerInstance>
      <!-- other settings ... -->
      <CredentialStore>
         <CredentialStorage type="file" path="OracleBIData_HOME/web/config/credentialstore.xml" passphrase="another_secret"/>
         <!-- other settings ... -->
      </CredentialStore>
      <!-- other settings ... -->
   </ServerInstance>
</WebConfig>

NOTE:  Both the files, credentialstore.xml and instanceconfig.xml should be protected using OS filesystem protection capabilities as their combination could reveal a privileged user's password. Note that neither file on its own has enough information to expose the password.

  
Oracle® Business Intelligence Enterprise Edition Deployment Guide Copyright © 2006, Oracle. All rights reserved.