1. Installation Guide
  2. Configure Other Products
  3. Configure the Oracle Analytics Publisher Environment for Oracle Argus Insight
  4. Manage Users and Roles: Oracle Analytics Publisher Standalone Installation with Oracle Fusion Middleware Security
  5. Oracle Analytics Publisher Standalone Installation in Oracle Fusion Middleware Security
  6. Create Roles and Policies

Create Roles and Policies

To create new application roles:

  1. Login to Oracle Fusion Middleware Control Enterprise Manager.

  2. Go to WebLogic Domain > Security > Application Roles.

    The Application Roles dialog box appears.

  3. From the Application Stripe drop-down list, select OBI, and click Search Oracle Fusion Middleware Search Icon.

    The default role available in clean slate installation appears.

  4. Click Create.

    The Create Application Role dialog box appears.

  5. In the Role Name field, enter AIAdminRole.

  6. From the Members section, click +Add.

    The Add Principal dialog box appears.

  7. From the Type drop-down list, select Group, and click Search.

    A list of principals appears.

  8. From the list of Searched Principals, select AIAdminGroup, and click OK.

  9. From the Members section, click +Add.

    The Add Principal dialog box appears.

  10. From the Type drop-down list, select Application Role, and click Search.

    A list of principals appears.

  11. From the list of Searched Principals, select BIServiceAdministrator, and click OK.

    The Membership for AIAdminRole appears.

  12. To add AIAuthorRole, repeat from Step 4 to Step 11.

  13. To add AIConsumerRole, repeat from Step 4 to Step 11.

Note:

For more details, refer Section 2.8.3.1 Creating Application Roles Using Fusion Middleware Control in https://docs.oracle.com/middleware/1221/bip/BIPAD.pdf

To create new application policy:

  1. Login to Oracle Fusion Middleware Control Enterprise Manager.

  2. Go to WebLogic Domain > Security > Application Policies.

    The Application Policies screen appears.

  3. To create a new application policy, click Create.

    The Create Application Grant dialog box appears.

  4. From the Grantee section, click +Add.

    The Add Principal dialog box appears.

  5. From the Type drop-down list, select Application Role, and click Search Oracle Analytics Search Icon.
  6. From the list of Searched Principals, select AIAdminRole, and click OK.

  7. From the Permissions section, click +Add.

    The Add Permission dialog box appears.

  8. Select the Resource Types radio button.
  9. From the Resource Type drop-down list, select oracle.bi.publisher.permission, and click Search.

  10. From the Search Results, select oracle.bi.publisher.permission (Oracle Analytics Publisher Administer Server), and click Continue.

    The Add Permission dialog box appears.

  11. For Permission Actions, select All (_all_), and click Select.

  12. Add Resource Name as oracle.bi.user with Impersonate permission.

    The new AI Admin policy has all the permissions.

    Note:

    Make sure all the fields are either selected or entered manually.

  13. Repeat from Step 4 to Step 12, to add the following:

    Name Grantee Resource Permissions

    AI Author

    AIAuthorRole

    BIP Develop Report

    BIP Develop Data Model

    AI Consumer

    AIConsumerRole

    BIP Access Excel Report Analyzer

    BIP Access Online Report Analyzer

    BIP Access Report Output

    BIP Schedule Report

Note:

For more details, refer to Section 2.8.3.2 Creating Application Policies Using Fusion Middleware Control from https://docs.oracle.com/middleware/1221/bip/BIPAD.pdf.

Parent topic: Oracle Analytics Publisher Standalone Installation in Oracle Fusion Middleware Security