Row-level security enables users to view only those records that match their security profile, no matter what their search criteria. It enables administrators to tag data in the row level of a database, thus controlling who has read access to information. Row-level security is critical to applications that display sensitive data such as employee salaries, sales commissions, or customer details. Lack of row-level security could be a big detriment to organizations that want to distribute information to their user community using the Internet and intranets.
If you want to implement row-level security in Reporting and Analysis, keep these points in mind:
At least one Hyperion Interactive Reporting Data Access Service instance must be configured to access the data source storing your row-level security information.
The database client library should be installed on the computer where the Hyperion Interactive Reporting Data Access Service is running.
The data source for the Reporting and Analysis repository that has the row-level security table information should be configured.
For security reasons, the user name and password to access the data source should differ from that used for the Reporting and Analysis user account.
See the Hyperion Interactive Reporting Studio User's Guide for information about implementing row-level security in Interactive Reporting documents.
Row-level security properties are stored in the repository; however, the rules about how to give access to the data are stored in the data source.
To modify row-level security properties:
Select Navigate, then Administer, then Reporting and Analysis, and then Row Level Security.
Modify these row-level-security properties:
Enable Row Level Security—Row-level security is disabled by default.
Connectivity—Database connectivity information for reports’ source data.
Database Type—Type of database that you are using. Database types available depend on connectivity selection.
User Name—Default database user name used by Job Service for running Oracle's Hyperion® SQR® Production Reporting jobs on this database server; used for jobs that were imported with no database user name and password specified.
Confirm Password—reenter password.