Monday, April 30, 2012

How to: Edit Repository (RPD) Online OBIEE 10g/11g

For a fairly simple task, there is relatively little information on OTN and the OBIEE Admin guide on

How to enable online repository editing:

This how to assumes you're setting up online editing on a windows server that already has, at the minimum, AdminTool installed.  Online repository editing relies on the ODBC protocol to connect to your linux-hosted repository.

-----
 On your windows client, navigate to the Open Database Connectivity (ODBC) screen and select the 'System DSN' tab.


 Click Add and Select 'Oracle BI Server' as the data source

Type in the appropriate name and description. Under the 'server' drop down menu, type in your linux-hosted repository server

Specify the username, password and port #  on the screen below. OBIEE uses default port 9703. Consult your nqsconfig.ini file for details.

Hit Next, ODBC will automatically test your configuration settings. Once complete, click finish and then navigate to AdminTool.exe

Click 'open online' (the blue folder) as seen below:

You should now see the ODBC connection you created as a selectable repository option




keywords: meta data repository, rpd, edit rpd online, rpd online, obiee rpd, obiee rpd admin tool
at 1 comment:
Labels: , , ,

How to: OBIEE 11g LDAP Authentication in Repository

Recent challenge at a client site :

How to configure OBIEE 11g to authenticate using LDAP.

There are 2 main steps to configure OBIEE 11g to authenticate users via LDAP:

1) Create LDAP Server connection:

Manage -> Security
Within Security Manager : Action -> New -> LDAP Server

At the minimum, you will need to identify your company's LDAP server, version, port # and base DN. Base DN identifies the starting point of your authentication search. For example, if you want to search all entries under the o=test.com subtree of the directory, o=test.com is the base DN


If you leave Bind DN and Bind password blank , anonymous binding is assumed. Note that LDAP v2 does not support anonymous binding.

Hit the test connection button to confirm your settings are correct:

2) Create a LDAP initialization block that points to the LDAP server you just created:

Manage -> Variables
Within Variable Manager: Action -> New -> Session -> Initialization Block

 Specify LDAP as your data source type, click browse and select the LDAP server you just created (as seen below)

Hit OK, then click 'Edit Data Target'. You will have to create at a minimum: 2 session variables - "USER" and "DISPLAYNAME" with the corresponding LDAP variables.

If LDAP successfully authenticates, the USER and DISPLAYNAME variable be passed data which you can use for data-level authorization.
Click the 'New' button below, and create the 2 variables as specified in the image.

Row-wise initialization will allow you to create session variables dynamically at the initialization of the session. For Basic LDAP authorization, this can remain unchecked

Hit OK to navigate back to the main screen 'Session Variable Initialization Block'. On the bottom left hand corner you will see a button labeled test:

Click 'Test' and type in a valid LDAP username & password:



If successful, your session variables will return valid values:


If Invalid, you will get the following values:

Now restart OBIEE presentation services , and your user should be able to authenticate via Answers.
You will still need to be create an Authorization policy for this user, by assigning them to applicable groups. You can find that covered in this guide  - OBIEE 11g LDAP Authorization using an external database as the source

In Summary:

1) Create LDAP Connection
2) Create Init Block
3) Create LDAP USER and DISPLAYNAME session variables
4) Associate session variables with LDAP Init Block.
at No comments:
Labels: , , , ,
Subscribe to: Posts (Atom)