EPM Shared Services Security Users and Roles
All roles from EPM Shared Services can be mapped to the new roles and permissions, or you can to use those EPM Shared Services roles.
Essbase offers the following roles when using EPM Shared Services Security in the Essbase web interface.
Table 8-3 Essbase Server Roles
Role | Description |
---|---|
Administrator | Full access to administer Essbase Server, applications, and databases. This is same as Service Administrator role in WebLogic Security mode. |
Create/Delete Application |
Creates and deletes applications and databases. Includes Application Manager and Database Manager permissions for the applications and databases created by this user. This is same as 'Power User' role in WebLogic Security mode. |
Server Access |
Accesses any application or database belonging to this Essbase Server. This level is the minimum access permission a user must have to access applications and databases. This is same as 'User' role in WebLogic Security mode. |
Provisioning Manager | NA |
Essbase Application Roles
Role | Description |
Calc |
Calculates, updates, and reads data values based on assigned scope, using any assigned calculations and filter This is same as 'Database Update' role in WebLogic Security mode. |
Filter | Accesses specific data and metadata according to filter restrictions |
Application Manager |
Creates, deletes, and modifies databases and application settings within the assigned application. Includes Database Manager permissions for databases within the application. An Application Managers can delete only those applications and databases that he created. This is same as 'Application Manager' role in WebLogic Security mode. |
Database Manager |
Manages the databases, database artifacts, and locks within the assigned application This is same as 'Database Manager' role in WebLogic Security mode. |
Provisioning Manager | NA |
Read |
Reads data values This is same as 'Database Access' role in WebLogic Security mode. |
Write |
Updates and reads data values based on assigned scope, using any assigned filter This is similar to 'Database Update' role in WebLogic Security mode except user cannot perform calc/script execution. |
Start/Stop Application | Starts and stops applications or databases |