Resources to Unprotect

Table 17 lists the contexts that must be unprotected. The syntax for unprotecting a resource (using /interop/framework(.*) as an example) for OSSO:

<LocationMatch /interop/framework(.*)>
   Require valid-user
   AuthType Basic
   allow from all
   satisfy any
</LocationMatch>

Table 17. EPM System Resources to Unprotect

EPM System ProductContexts to Unprotect
Shared Services
  • /interop/framework(.*)

  • /interop/Audit(.*)

  • /interop/taskflow*

  • /interop/WorkflowEngine/*

  • /interop/TaskReceiver

  • /framework/lcm/HSSMigration

Performance Management Architect
  • /awb/ces.executeAction.do

  • /awb/lcm.executeAction.do

  • /awb/appmanager.deployStatusUpdate.do

  • /awb/jobstask.updateJobStatus.do

EPM Workspace/workspace/browse/listXML*
Planning/HyperionPlanning/Smartview
[1]Oracle's Hyperion Reporting and Analysis Framework[2]
  • /raframework/browse/listXML

  • /raframework/wsrp4j(.*)

  • /raframework/ResourceProxy(.*)

Oracle's Hyperion® Web Analysis*
  • /WebAnalysis/wsrp4j(.*)

  • /WebAnalysis/ResourceProxy(.*)

Oracle Hyperion Financial Reporting, Fusion Edition*
  • /hr/common/HRLogon.jsp

  • /hr/wsrp4j(.*)

  • /hr/ResourceProxy(.*)

  • /hr/services/*

  • /hr/modules/com/hyperion/reporting/web/reportViewer/HRStaticReport.jsp

Hyperion Calculation Manager/calcmgr/common.performAction.do (for Performance Management Architect)
Oracle Essbase Administration Services
  • /eas

  • /easconsole

  • /easdocs

Financial Management/hfm/EIE/EIEListener.asp (for Performance Management Architect)
Planning
  • /HyperionPlanning/servlet/HspLCMServlet

  • /HyperionPlanning/servlet/HspAppManagerServlet (for Performance Management Architect)

Oracle Hyperion Performance Scorecard, Fusion Edition
  • /HPSWebReports/wsrp4j(.*)

  • /HPSWebReports/ResourceProxy(.*)

  • /HPSWebReports/action/lcmCallBack

Performance Management Architect Data Synchronization/DataSync/services*
Oracle Hyperion Strategic Finance, Fusion Edition
  • /HSFWebServices/HSFWebService.asmx

  • /HSFWebServices/HSFEntityWebService.asmx

Oracle Integrated Operational Planning, Fusion Edition
  • /interlace/services/(.*)

  • /interlace/anteros/(.*)

  • /interlace/interlace/(.*)

  • /interlace/WebHelp/(.*)

  • /interlace/html/(.*)

  • /interlace/email-book/(.*)

Profitability and Cost Management
  • /profitability/cesagent

  • /profitability/lcm

  • /profitability/control

  • /profitability/ApplicationListener

Oracle Hyperion Financial Data Quality Management ERP Integration Adapter for Oracle Applications
  • /aif/services/FDMRuleService

  • /aif/services/RuleService

Oracle Hyperion Disclosure Management
  • /discmanwebservices

  • /mappingtool/MappingToolWS

1 When a security agent is enabled for EPM Workspace, Web Analysis, or Financial Reporting that uses SAP Portal, unprotect only the wsrp4j URLs (/raframework/wsrp4j, /WebAnalysis/wsrp4j, and /hr/wsrp4j). Also remove the line com.hyperion.portlet.sso.filter.SMAuthHandler from \WEB-INF\classes\auth-handlers.config in the web application deployments of Reporting and Analysis Framework, Web Analysis, and Financial Reporting. In this scenario, portlets authentication is done using the SAP token. For other portals, protect wsrp4j URLs in the security agent.

2 If you are using Oracle Web Center or Oracle Portal for Portlets, Oracle recommends that you use a security agent such as Oracle Access Manager to protect the system. In this scenario, you must also protect wsrp4j URLs using the security agent.