Table of Contents
- Title and Copyright Information
- Preface
- 1 Get Started with Security
-
2
Set Up Security With Users, Groups, and Application Roles
- Security Configuration Tools
- Overview of Users, Groups, and Application Roles
-
Manage Users and Groups in the Embedded WebLogic LDAP Server
- Use the Oracle WebLogic Server Administration Console
- Create a New User in the Embedded WebLogic LDAP Server
- Create a New Group in the Embedded WebLogic LDAP Server
- Assign a User to a Group in the Embedded WebLogic LDAP Server
- Delete a User
- Change a User Password in the Embedded WebLogic LDAP Server
-
Manage Application Roles
- About Application Roles
- Predefined Application Roles
- About Permissions
- Get Started with Application Roles
- Add Members to Application Roles
- Why Is the Administrator Application Role Important?
- Assign Application Roles to Users
- Assign Application Roles to Groups
- Add Your Own Application Roles
- Copy Permissions to an Existing User-Defined Application Role
- View Permissions Granted to Application Roles
- Grant and Revoke Permissions for Application Roles
- Delete Application Roles
- Add One Predefined Application Role to Another (Advanced)
- View and Export Detailed Membership Data
- Sample Scenarios: User-defined Application Roles
- Grant or Revoke Permission Assignments
- Grant Semantic Modeler Permissions Assignments
- Manage Model Administration Tool Privileges
- Manage Presentation Services Privileges
- Manage Data Source Access Permissions With Oracle Analytics Server Publisher
- Enable High Availability of the Default Embedded Oracle WebLogic Server LDAP Identity Store
- Use runcat to Manage Security Tasks in the Presentation Catalog
-
3
Use Alternative Authentication Providers
- About Alternative Authentication Providers
- High-Level Steps for Configuring an Alternative Authentication Provider
- Set Up Groups and Users in the Alternative Authentication Provider
-
Configure Oracle Analytics Server to Use Alternative Authentication Providers
- Reconfigure Oracle Internet Directory as an Authentication Provider
- Reconfigure Microsoft Active Directory as the Authentication Provider
- Configure User and Group Name Attributes in the Identity Store
-
Configure LDAP as the Authentication Provider and Storing Groups in a Database
- Prerequisites
- Create a Sample Schema for Groups and Group Members
- Configure a Data Source and the BISQLGroupProvider Using Oracle WebLogic Server Administration Console
- Configure the Virtualized Identity Store
- Test the Configuration by Adding a Database Group to an Application Role
- Correct Errors in the Adaptors
-
Configure a Database as the Authentication Provider
- Introduction and Prerequisites
- Create a Sample Schema for Users and Groups
- Configure a Data Source and SQL Authenticator Using the Oracle WebLogic Server Administration Console
- Configure the Virtualized Identity Store
- Troubleshoot the SQL Authenticator
- Correct Database Adapter Errors by Deleting and Recreating the Adapter
- Configure Identity Store Virtualization Using Fusion Middleware Control
- Configure Multiple Authentication Providers
- Set the JAAS Control Flag Option
-
Configure a Single LDAP Authentication Provider as the Authenticator
-
Configure Oracle Internet Directory LDAP Authentication as the Only Authenticator
- Task 1 - Enable Backup and Recovery
- Task 2 - Configure the System to use WebLogic Server and an Alternative Authentication Provider
- Task 3 - Identify or Create Essential Users Required in OID LDAP
- Task 4 - Associate OID LDAP Groups with Global Roles in the WebLogic Console
- Task 5 - Set User to Group Membership in OID LDAP
- Task 6 - Remove the Default Authenticator
- Task 7 - Restart the BI Services
- Task 8 - Remove WebLogic Server Roles
- Task 9 - Stop Alternative Methods of Authentication
- Troubleshoot
-
Configure Oracle Internet Directory LDAP Authentication as the Only Authenticator
- Configure Oracle Identity Cloud Integrator as the Authentication Provider
- Reset the BI System User Credential
-
4
Enable SSO Authentication
- SSO Configuration Tasks for Oracle Analytics Server
- Understand SSO Authentication and Oracle Analytics Server
- SSO Implementation Considerations
- Configure SSO in an Oracle Access Manager Environment
- Configure SSO with Oracle Identity Cloud Service and App Gateway
- Configure Custom SSO Environments
- Enable Oracle Analytics Server to Use SSO Authentication
-
5
Configure SSL in Oracle Analytics Server
- What is SSL?
- Enable End-to-End SSL
- Enable Internal SSL
- Disable Internal SSL
- Export Trust and Identity for Clients
- Configure SSL for Clients
- Check Certificate Expiry
- Replace the Certificates
- Update Certificates After Changing Listener Addresses
- Add New Servers
- Enable SSL in a Configuration Template Configured System
- Enable SSL Without Internal Oracle Analytics Server SSL
- Manually Configure SSL Cipher Suite
- Configure SSL Connections to External Systems
- WebLogic Artifacts Reserved for Oracle Analytics Server Internal SSL Use
-
A
Managing Security for Dashboards and Analyses
- Managing Security for Users of Presentation Services
- Using Oracle BI Presentation Services Administration Pages
- Determining a User's Privileges and Permissions in Presentation Services
- Providing Shared Dashboards for Users
- Controlling Access to Saved Customization Options in Dashboards