Essbase Security Model

Oracle Essbase enforces two levels of roles: Essbase Server roles and Essbase application roles. These roles are granted and maintained through Oracle Hyperion Shared Services Console.

In addition to roles, Essbase enforces access control (for example, read and write) on artifacts such as dimension members, filters, and calculation scripts. Filters are also security constructs that limit access.

Provisioning information on Essbase application roles is stored in the Oracle Hyperion Shared Services repository. Access control information on Essbase artifacts is stored in essbase.sec, the Essbase security file, which is stored on the same server as Essbase.