Table 17 lists the contexts that must be unprotected. The syntax for unprotecting a resource (using /interop/framework(.*) as an example) for OSSO:
<LocationMatch /interop/framework(.*)> Require valid-user AuthType Basic allow from all satisfy any </LocationMatch>
Table 17. EPM System Resources to Unprotect
EPM System Product | Contexts to Unprotect |
---|---|
Shared Services |
|
Performance Management Architect |
|
EPM Workspace | /workspace/browse/listXML* |
Planning | /HyperionPlanning/Smartview |
[1]Oracle's Hyperion Reporting and Analysis Framework[2] |
|
Oracle's Hyperion® Web Analysis* |
|
Oracle Hyperion Financial Reporting, Fusion Edition* |
|
Hyperion Calculation Manager | /calcmgr/common.performAction.do (for Performance Management Architect) |
Oracle Essbase Administration Services |
|
Financial Management | /hfm/EIE/EIEListener.asp (for Performance Management Architect) |
Planning |
|
Oracle Hyperion Performance Scorecard, Fusion Edition |
|
Performance Management Architect Data Synchronization | /DataSync/services* |
Oracle Hyperion Strategic Finance, Fusion Edition |
|
Oracle Integrated Operational Planning, Fusion Edition |
|
Profitability and Cost Management |
|
Oracle Hyperion Financial Data Quality Management ERP Integration Adapter for Oracle Applications |
|
Oracle Hyperion Disclosure Management |
|
1 When a security agent is enabled for EPM Workspace, Web Analysis, or Financial Reporting that uses SAP Portal, unprotect only the wsrp4j URLs (/raframework/wsrp4j, /WebAnalysis/wsrp4j, and /hr/wsrp4j). Also remove the line com.hyperion.portlet.sso.filter.SMAuthHandler from \WEB-INF\classes\auth-handlers.config in the web application deployments of Reporting and Analysis Framework, Web Analysis, and Financial Reporting. In this scenario, portlets authentication is done using the SAP token. For other portals, protect wsrp4j URLs in the security agent.