Business Intelligence – Oracle

Oracle BI EE 10.1.3.3.3/2 – Public Reports and Dashboards – Bypassing authentication

Posted by Venkatakrishnan J on June 30, 2008

Another common question that keeps circulating is, “how do we bypass login to certain BI EE Dashboards?”. The most obvious answer to this question is to pass the username and password through the url. But certain security requirements/standards in some companies do not allow passing of passwords through the URL. So, lets look at a simple approach wherein some dashboards can be seen without passing the passwords through the url. The idea is pretty simple. Identify a user, for example PUBLIC, that would get direct access to certain dashboards. This user should not exist in the BI EE repository. All the other users would exist in the BI EE repository. So, the first step to achieve this is to create a simple init block with the below shown sql.

select ':USER' from dual where upper( ':USER' ) = upper( 'Public' )

Make the above init block to set the USER system session variable. Also, check the “Required for Authentication” check box. The init block can connect to any oracle database connection pool.

    

Now, if you use the below shown go url, the dashboards would be shown. As you see we are not passing the passwords through the go url.

http://localhost:9704/analytics/saw.dll?Dashboard&nquser=Public

    

The above approach uses the concept of external table authentication. Basically, the init block checks for the PUBLIC user and ensures that the user is authenticated without even checking for the password. All the reports/dashboards that can be viewed by the “Everyone” privilege can be accessed by this PUBLIC user. Very simple but can be used in certain situations.

Advertisements

3 Responses to “Oracle BI EE 10.1.3.3.3/2 – Public Reports and Dashboards – Bypassing authentication”

  1. Raghu said

    Considering licensing for OBIEE is done per user… what havoc is wrecked by a public user account??

  2. Ling said

    You will need to by processor license for using this feature.

  3. Vang said

    Really useful article….
    Can you please explain how exactly processor license and user license differ…

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: