This section explains how to manage users and groups in the Embedded WebLogic LDAP Server, and contains the following topics:
This section describes how to extend the security model by creating your own users, and assigning them to new groups, and new application roles. For example, you might want to create a user called Jim and assign Jim to a new group called BIMarketingGroup that is assigned to a new application role named BIMarketingRole.
To create a new user and assign the user to a new group and a new application role:
You typically create a separate user for each business user in your Oracle Business Intelligence environment. For example, you might plan to deploy 30 report consumers, 3 report authors, and 1 administrator. In this case, you would use Oracle WebLogic Server Administration Console to create 34 users, which you would then assign to appropriate groups.
Repeat this task for each user that you want to deploy.
Note:
About the built-in Authenticated User application role.
All users who are able to log in are given a basic level of operational permissions conferred by the built-in Authenticated User application role. . The author of the BI application that is imported into your service instance may have designed the security policy so that all authenticated users are members of an application role that grants them privileges in the BI application. For more information, see Security Configuration Using the Sample Application
You typically create a separate group for each functional type of business user in your Oracle Business Intelligence environment. For example, a typical deployment might require three groups: BIConsumers, BIContentAuthors, and BIServiceAdministrators. In this case, you could create groups named BIConsumers, BIContentAuthors, and BIServiceAdministrators that you can configure to use with Oracle Business Intelligence, or you might create your own custom groups.
Tip:
For an example security model showing a set of users, groups, and application roles, see An Example Security Setup of Users, Groups, and Application Roles.
Repeat this task for each new group that you want to deploy.
To create a new group in the embedded WebLogic LDAP server:
You typically assign each user to an appropriate group. For example, a typical deployment might require user IDs created for report consumers to be assigned to a group named BIConsumers. In this case, you could either assign the users to the default group named BIConsumers, or you could assign the users to your own custom group that you have created.
Tip:
For an example security model showing a set of users, groups, and application roles, see An Example Security Setup of Users, Groups, and Application Roles.
Repeat this task to assign each user to an appropriate group.
To add a user to a group in the embedded WebLogic LDAP server: