| Oracle® Communications Data Model Implementation and Operations Guide Release 11.3.2 E28442-05 |
|
|
PDF · Mobi · ePub |
| Oracle® Communications Data Model Implementation and Operations Guide Release 11.3.2 E28442-05 |
|
|
PDF · Mobi · ePub |
This chapter provides information about managing user privileges in Oracle Communications Data Model. It contains the following topics:
When You Must Consider User Privileges in an Oracle Communications Data Model
Granting Only Select Privileges to Database Users of the Sample Reports
Installing the Oracle Communications Data Model component creates the account: ocdm_sys. Installing the Oracle Communications Data Model sample reports create the ocdm_sample account. Ensure you unlock these accounts with new passwords following the postinstallation steps provided in Oracle Communications Data Model Installation Guide.
See:
Oracle Communications Data Model Installation Guide for information on installing Oracle Communications Data Model and for unlocking the ocdm_sys account.The ocdm_sys accounts includes the following:
ocdm_sys is the main schema for Oracle Communications Data Model. This schema contains all the relational and OLAP components of Oracle Communications Data Model.
The Oracle Communications Data Model data mining tables are also in this schema.
The installation process grants the necessary privileges required for users of the default accounts (ocdm_sys and ocdm_sample). After installing the product, you only need to consider user privileges for the following:
The intra-ETL programs run inside the ocdm_sys schema, therefore, these programs require the full access to the ocdm_sys schema. By default, the PL/SQL intra-ETL packages for Oracle Communications Data Model connect to the ocdm_sys schema for intra-ETL execution. For security reasons, you may want to grant different privilages, for different purposes, to users of the ocdm_sys schema by following the steps outline in "Granting Only Required Privileges to Database Users of OCDM_SYS".
By default, the Oracle Communications Data Model sample reports connect to the ocdm_sys schema directly. For security reasons, you may want to grant only select privileges to users of the sample reports by following the steps outlined in "Granting Only Select Privileges to Database Users of the Sample Reports".
By default, you connect as ocdm in OBIEE to access the reports. For security reasons, you may want to create different users in OBIEE for different purposes by following the steps outlined in "Granting Permission Privileges of the OBIEE reports to BI Users and Roles".
To grant only select privileges to users of the ocdm_sys schema, take the following steps:
Create another role for a different purpose (for example, OCDM_developer for Oracle Communications Data Model customization for a developer who can execute packages and do some dml/ddl operations. And create OCDM_Viewer for a report viewer who wants to view data but cannot modify and object or data. Then create the user and grant proper roles.).
Grant required privilege to different roles (For example, OCDM_developer needs execute privilege on etl packages but ocdm_viewer does not).
Create users and grant required roles.
Create a view (or synonym) in user schema that points to the ocdm_sys tables.
To grant only select privileges to users of the sample reports, take the following steps:
Create a dedicated reporting user (for example, OCDM_Report).
Grant select privilege for all Oracle Communications Data Model tables required for reporting to OCDM_Report. (The easiest way to select privileges for these tables is to grant all Oracle Communications Data Model tables that start with a prefix of DWA_, DWB_, DWD_, DWR_, or DWL_.)
Create a view (or synonym) in OCDM_Report schema that points to the ocdm_sys tables.
In the Oracle Business Intelligence Suite Enterprise Edition repository for Oracle Communications Data Model, change the connection information to point to the new schema.
To grant permission privileges to users of the OBIEE reports, take the following steps:
Create a dedicated report user (for example, market_manager).
Grant required group membership for user market_manager.
Create a role or manage the existing roles and add the user market_manager in referenced roles.
Configure permission privileges of the related reports or dashboards to user market_manager or the referenced roles.
Apply and refresh the OBIEE server.
|
 Copyright © 2011, 2013, Oracle and/or its affiliates. All rights reserved. Legal Notices |
|
