Integrating with Oracle E-Business Suite

BI Publisher can leverage your E-Business Suite security to enable your users to log in to BI Publisher using their E-Business Suite credentials. The BI Publisher security integration recognizes the user's E-Business Suite responsibility and org_id combinations.

When users log in, they are prompted to select a responsibility. Reports that users run against the E-Business Suite data tables then filter the data based on their responsibility and org_id combination. Users can switch responsibilities and reporting organization while still logged in using the My Account dialog.

When you integrate with the E-Business Suite security, your E-Business Suite responsibilities appear as roles in the BI Publisher security center. You can then add BI Publisher catalog permissions and data access privileges to the imported roles/responsibilities. See Understanding BI Publisher Users, Roles, and Permissions.

Follow these procedures to integrate BI Publisher with Oracle E-Business Suite:

Note:

In this release, users cannot access or execute reports that are stored on the E-Business Suite instance. Reports must reside in the BI Publisher catalog. The E-Business Suite data security is enforced when BI Publisher connects to the E-Business Suite data tables to retrieve the report data.

Oracle BI Publisher relies on information stored in the DBC file to connect to the E-Business Suite instance. Ensure that you can locate and have access to this file. The DBC file is typically located under the $FND_SECURE directory.

Features of the Integration with E-Business Suite Security

When BI Publisher is integrated with E-Business Suite security, certain features are enabled.

Configuring BI Publisher to Use E-Business Suite Security

You configure BI Publisher for E-Business Suite Security on the Administration page.

To configure BI Publisher to use E-Business Suite security:
  1. In the Oracle E-Business Suite, log in as a System Administrator and create the following responsibilities to correspond to the BI Publisher functional roles:

    • XMLP_ADMIN — Serves as the administrator role for the BI Publisher server.

    • XMLP_DEVELOPER  — Allows users to build reports in the system.

    • XMLP_SCHEDULER — Allows users to schedule reports.

    • XMLP_TEMPLATE_DESIGNER — Allows users to connect to the BI Publisher server from the Template Builder and to upload and download templates. Allows users to design layouts using the BI Publisher Layout Editor.

  2. Add these new BI Publisher responsibilities to the appropriate users.

    Note:

    Ensure that you assign at least one user to the XMLP_ADMIN group.

  3. Log in to Oracle BI Publisher. On the Administration page, select Security Configuration.
  4. In the Authorization region of the page, select Oracle E-Business Suite from the Security Model list.
  5. Load the DBC file from the E-Business Suite instance. This is typically located under the $FND_SECURE directory. If you do not have access to this file, then contact your E-Business Suite system administrator. This file specifies how BI Publisher should access the E-Business Suite instance.
  6. Click Apply. Restart BI Publisher for the security changes to take effect.

When you restart the system, the E-Business Suite responsibilities to which BI Publisher roles have been assigned are visible as roles in the BI Publisher security center.

Adding Data Sources to the E-Business Suite Roles

To view a report generated from a particular data source, a report consumer's role must be granted access to the data source.

Similarly, to create a data model based on a particular data source, the report author's role must be granted access to the data source.

To grant a role access to a data source:

  1. On the Administration tab, under Security Configuration, click Roles and Permissions. The responsibilities that are assigned BI Publisher roles in the E-Business Suite instance are displayed as available roles.
  2. Find the role to which you want to add data sources and click Add Data Sources. The Add Data Sources page is displayed.
  3. Locate the appropriate data sources in the Available Data Sources list and use the shuttle buttons to move the sources to the Allowed Data Sources list for the role.
  4. Click Apply.
  5. Repeat for all roles that need access to report data sources.

Granting Catalog Permissions to the E-Business Suite Roles

For a role to access objects in a folder, you must grant the role permissions to the catalog object.

You can grant permissions at the folder level, so that a role has the same access to every object in a folder, or you can assign access individually to each object in a folder.

See the following sections for more information:

To grant catalog permissions to E-Business Suite roles:

  1. In the catalog, navigate to a catalog object required for a role.
  2. Click the More link for the object and then click Permissions to open the Permissions dialog.
  3. Click Create to open the Add Roles dialog.
  4. Click Search to populate the list of Available Roles.
  5. Use the Move button to move the appropriate roles from the Available Roles list to the Selected Roles list.
  6. Click OK.
  7. Enable the appropriate permissions for the role by selecting the check boxes.
  8. If you have selected a folder: To apply the selections to all items within a folder, select Apply permissions to items within this folder.