1. Administering Oracle Analytics Publisher in Oracle Analytics Server
  2. Integrate with Other Oracle Security Models
  3. Integrate with Oracle E-Business Suite

Integrate with Oracle E-Business Suite

Publisher can leverage your E-Business Suite security to enable your users to log in to Publisher using their E-Business Suite credentials. The Publisher security integration recognizes the user's E-Business Suite responsibility and org_id combinations.

When users log in, they're prompted to select a responsibility. Reports that users run against the E-Business Suite data tables then filter the data based on their responsibility and org_id combination. Users can switch responsibilities and reporting organization while still logged in using the My Account dialog.

When you integrate with the E-Business Suite security, your E-Business Suite responsibilities appear as roles in the Publisher security center. You can then add Publisher catalog permissions and data access privileges to the imported roles/responsibilities. See Understand Publisher Users, Roles, and Permissions.

Follow these procedures to integrate Publisher with Oracle E-Business Suite:

Note:

Users cannot access or run reports that are stored on the E-Business Suite instance. Reports must reside in the Publisher catalog. The E-Business Suite data security is enforced when Publisher connects to the E-Business Suite data tables to retrieve the report data.

Publisher relies on information stored in the DBC file to connect to the E-Business Suite instance. Ensure that you can locate and have access to this file. The DBC file is typically located under the $FND_SECURE directory.

Features of the Integration with E-Business Suite Security

When Publisher is integrated with E-Business Suite security, certain features are enabled.

  • When users log in to Publisher using their E-Business Suite credentials, they're prompted to choose a responsibility.

  • Users can switch responsibilities or reporting organizations using the My Account dialog.

  • The data source connection to the E-Business Suite instance is automatically configured and available in the data model editor, as shown below.


    Description of ebs_data_model.gif follows
    Description of the illustration ebs_data_model.gif

Configure Publisher to Use E-Business Suite Security

You configure Publisher for E-Business Suite Security on the Administration page.

  1. In the Oracle E-Business Suite, log in as a System Administrator and create the following responsibilities to correspond to the Publisher functional roles:

    • XMLP_ADMIN — Serves as the administrator role for the Publisher server.

    • XMLP_DEVELOPER  — Allows users to build reports in the system.

    • XMLP_SCHEDULER — Allows users to schedule reports.

    • XMLP_TEMPLATE_DESIGNER — Allows users to connect to the Publisher server from the Template Builder and to upload and download templates. Allows users to design layouts using the Publisher Layout Editor.

  2. Add these new Publisher responsibilities to the appropriate users.

    Note:

    Ensure that you assign at least one user to the XMLP_ADMIN group.

  3. Log in to Publisher. On the Administration page, select Security Configuration.
  4. In the Authorization region of the page, select Oracle E-Business Suite from the Security Model list.
  5. Load the DBC file from the E-Business Suite instance. This is typically located under the $FND_SECURE directory. If you do not have access to this file, then contact your E-Business Suite system administrator. This file specifies how Publisher should access the E-Business Suite instance.
  6. Click Apply. Restart Publisher for the security changes to take effect.

When you restart the system, the E-Business Suite responsibilities to which Publisher roles have been assigned are visible as roles in the Publisher security center.

Add Data Sources to the E-Business Suite Roles

To view a report generated from a particular data source, a report consumer's role must be granted access to the data source.

Similarly, to create a data model based on a particular data source, the report author's role must be granted access to the data source.

  1. On the Administration tab, under Security Configuration, click Roles and Permissions. The responsibilities that are assigned BI Publisher roles in the E-Business Suite instance are displayed as available roles.
  2. Find the role to which you want to add data sources and click Add Data Sources. The Add Data Sources page is displayed.
  3. Locate the appropriate data sources in the Available Data Sources list and use the shuttle buttons to move the sources to the Allowed Data Sources list for the role.
  4. Click Apply.
  5. Repeat for all roles that need access to report data sources.

Grant Catalog Permissions to the E-Business Suite Roles

For a role to access objects in a folder, you grant the role permissions to the catalog object.

You can grant permissions at the folder level, so that a role has the same access to every object in a folder, or you can assign access individually to each object in a folder.

  1. In the catalog, navigate to a catalog object required for a role.
  2. Click the More link for the object and then click Permissions to open the Permissions dialog.
  3. Click Create to open the Add Roles dialog.
  4. Click Search to populate the list of Available Roles.
  5. Use the Move button to move the appropriate roles from the Available Roles list to the Selected Roles list.
  6. Click OK.
  7. Enable the appropriate permissions for the role by selecting the check boxes.
  8. To apply the selections to all items within a folder, select Apply permissions to items within this folder.