How changed Security Rights between Business Objects 3.x and 4.0.

Security rights  removed or missing rights in BI  4.0


Modes are enabled, all tools and panels are visible, but their use depends on the actual user’s rights. Removed from all clients:


  1. Queries: Enable Drill Mode and Extend scope of analysis -These rights are no longer managed.
  2. Interface: Ability to hide / show toolbars -The toolbar is replaced by toolboxes which are always visible.
  3. Interface: Enable toolbox and menu items - Entire toolboxes cannot be deactivated. All menu items are always visible.Menus are controlled by security right linked to the actions offered. Menu items are grayed when the user does not have sufficient priviledges to use those items.
  4. Interface: Left pane - Enable available objects, tables and charts - The left pane items are always available
  5.  Interface: Left pane - Enable data summary -The data summary is always available

Removed right in 4.0 Web Intelligence Web interface

Enable HTML Report panel - This viewer and related security rights have been removed.

Deprecated Security Rights

 Interfaces - enable web query panel: This right is available in BI 4.0.3, but will not be available in later releases. 
Note that in BI4.0.x this right has no effect.

Changes in BO 4.0 rights

3.x Web interface rights that now apply to all interfaces
These security rights were specific to Web Intelligence Web interface only ( DHTML interface) in 3.x, but now apply to all clients:
- Web Intelligence Rich Client
- Rich Internet Application interface
- Web interface

The security rights in the table below keep the same behavior but now apply to all clients. 
They have not been renamed.
- General - edit 'My Preferences'
- General - enable right-click menus
- Left pane - enable document structure and filters
- Left pane - enable document summary
- Reporting - create and edit conditional formatting rules
- Reporting - create and edit breaks
- Reporting - create and edit predefined calculations
- Reporting - create and edit report filters and consume input controls
- Reporting - create and edit sorts
- Reporting - insert and remove reports, tables, charts and cells
Note: Rights in BI 4.0 are not the same location in the CMC as they were for 3.x.

How the new rights are applied for migrated documents


If in the previous release the user had acces to the Web Intelligence Rich Internet Application interface, then the migration results in all rights “Enabled” in 4.x
Else if the specific right in the previous release was Enabled then it is Enabled in 4.x for all clients.
If in the previous release the user did not have acces to the Web Intelligence Rich Internet Application interface, this right is disabled after migration.


Enable Query – Web interface 
Interfaces - enable web query panel (will be removed in 4.1)

Application Level : GENERAL RIGHTS
Log on to Web Intelligence and view this object in the CMC.
Log on to Web Intelligence.

Rights that are renamed and now apply to all interfaces

The security rights in the table below have been renamed and now apply to all clients:
- Web Intelligence Rich Client
- Rich Internet Application interface
- Web interface.


Migrating documents from 3.x to 4.x

Some rights no longer exist in 4.x due to the redesign of the interface For example, the toolbar could be disabled (not visible) in 3.x. In 4.x, the toolbar is replaced by toolboxes that are always visible, but specific functions are disabled depending on the logged user’s rights.


Important note concerning migrating from 3.x to 4.0

Where the 3.x administrator has set the user‘s security with (Import/Export to/from SAP BusinessObjects BI OnDemand a.k.a BIOD) security settings, you must not migrate the security settings. You should remove these settings first and then migrate the users and test it in 4.0.3.x
In XI3 SP4 the Import/Export to/from BIOD security properties were introduced. 
These rights are incompatible with 4.x. In this case, migrate Everything but security, and manually reassign security.
Migrate everything and check security. Potential risks are limited to :
WebIDisableExportToBIOD collision with CreateEditInputControls
WebIDisableImportFromBIOD collision with EditDocumentFormatting

Check the Create input control and Enable Document Formatting security rights for all users.

Comments

Post a Comment

Popular posts from this blog

SAP Dashboard Error - Cannot find the BusinessObjects Enterprise report source. (LO 26608)

<!-- Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=G-NL0CYP13VZ"></script> <script>   window.dataLayer = window.dataLayer || [];   function gtag(){dataLayer.push(arguments);}   gtag('js', new Date());   gtag('config', 'G-NL0CYP13VZ'); </script> Cannot find the BusinessObjects Enterprise report source. (LO 26608) Environment SAP BO XI 4.1 SP 5 two nodes Cluster Windows Server 2012 While refreshing dashboard (based on Live Office connection) from BI Launchpad with a no administrator user the above exception was erased. SAP says: Cause The document is not available; for example it does not exist, or it has been removed. Action Check the report path from CMS and use SetLocation in Live Office to re-define the report source. Otherwise, check if the user has sufficient rights to view the object. Solution In our case  we fixed this problem was to remo
Read more

SAP HANA Introduction

Image
SAP HANA:The future of database technology The capacity of main memory in servers has continuously increased over the years, whereas prices have dramatically dropped. Today, a single enterprise class server can hold several  terabytes of main memory. At the same time, prices for server main memory dramatically  dropped over the last few decades. This increase in capacity and reduction in cost makes it a  viable approach to keep huge amounts of business data in memory. This section discusses  the benefits and challenges. In few words you can understand SAP HANA plus  analyzing this evaluation: Typical access speeds Disk     4,000,000 ns Memory         0.4 ns Speed   10,000,000 Falling prices move processing from Disk/SSD to In-Memory In-Memory Computing The elements of In-Memory computing are not new. However, dramatically improved hardware economics and  technology innovations in software has now made it possible for SAP to deliver on its vision of the
Read more

SAP BusinessObjects 4.0 - Suite Presentation

Image
The latest Business Objects Suite, B.O. 4.0,  is suitable for every kind of user from top managers to simple clerk. It has a new  styling and unified look and feel in every tool of the suite. It garantees common query design experience across all data sources. It allows interactivity with shared charting, alerting, and search options. B.O. 4.0  has a new information design tool for heterogeneous access over all sources that represents  abstraction layer for multi-dimensional data sources. Beside it allows: A simplified, Right-Scale Deployment Enhanced scalability with virtualization and native 64-bit support Comprehensive system diagnosis and monitoring New auditing for compliance and usage analysis. New User Experience SAP BusinessObjects Mobile BI  Interactive Reports & Dashboards Allows to: Make informed decisions with instant access to personalized information Leverage existing BI investments & skills to quickly reach mobile users E
Read more