11.1.1 Creating OBIEE Roles

To create the OBIEE Roles, follow these steps:

1. Open the Admin Console of OBIEE.
2. Click on Security Realms under Domain Structure.
3. Click on myrealm under Realms.

   Figure 11-1 WebLogic Server Administration Console – Security Realms

   
   

   

   
   
4. Click on Groups tab of User and Groups.

   Figure 11-2 Groups Tab

   
   

   

   
   
5. Click on New and create new user group as ‘Restricted Access’.

   Figure 11-3 New User Group Creation

   
   

   

   
   
6. Create a new user under Users tab of Users and Groups.

   Figure 11-4 New User Creation

   
   

   

   
   
7. Map the newly created users to ‘Restricted Access’ group, which need Data Visibility.

   Figure 11-5 Mapping New Users to Restricted Access Group

   
   

   

   
   
8. Close the Admin Console of OBIEE.
9. Open Enterprise Manager of OBIEE.
10. Click on biinstance under Business Intelligence.

    Figure 11-6 BI Instance

    
    

    

    
    
11. Click on Security under biinstance.

    Figure 11-7 Security Tab

    
    

    

    
    
12. Click on Configure and Manage Application Roles to create Application Roles.
13. Map the newly created user group Restricted Access to the BI Consumer Role.
14. Click on Create and name as OFSAA CI Data Visibility - MGR role . Ensure to use the same name as it is referenced in RPD failed to do this should have access to all reports data.

    Figure 11-8 Create Application Role

    
    

    

    
    
15. Map the user group, which need data visibility to the OFSAA CI Data Visibility – MGR.

    Figure 11-9 OFSAA CI Data Visibility- MGR