Migration of security of Shared Services
Hi allI need to migrate security of the SSP from a server to another server (migrate applications already).
Can you please let me know if you copy the file essbase.sec it will work, or any other process that we follow.
Thank you
Pinky
Dear Pinky,
As John just mentioned - it depends a bit version you use so (11.1.2 differs from 11.1.1.3.x differs from 9.x)
but you can find useful information in these guides:
http://download.Oracle.com/docs/CD/E12825_01/EPM.111/epm_security.PDF
http://download.Oracle.com/docs/CD/E12825_01/EPM.111/epm_backup_recovery.PDF
The CSSImportExport utiity is documented in its own folder on your installation of HSS zip (if you are using version 11.1.1.x)
Basically, you can think about the process of backup and restore on a different computer.
The complete list of steps is far too detailed and complex and affects too many sensitive areas to endure in a thread here.
(especially since I don't know the versions of HSS/Essbase, the OS or scope of this migration)
Best regards
Torben
Tags: Business Intelligence
Similar Questions
-
Refresh security in Shared Services menu is not available
We have EAS 9.3.3 and when I right-click the Security node, I don't see the security of Refresh of SS in the menu. I logged in using admin id and I already checked the permissions. I read recently in some documents that EA Refresh is no longer necessary and the menu is no longer present in the EA. Can someone please confirm this? If this isn't the case, please let me know where I should be looking. A quick response to popular.
Thank youIn 9.3.3 the possibility to update security of shared services is no longer necessary
Take a look at the Readme:-http://download.oracle.com/docs/cd/E10530_01/doc/epm.931/esb_93300_readme.pdf
Article - "deletion of synchronization of security between Essbase and Shared Services.See you soon
John
http://John-Goodwin.blogspot.com/ -
Security of Shared Services... Urgent
Hello
We installed the Hyperion 9.3.1 product suite and outsourced shared services users. We have planning, reporting of the components as well.
We have the same safety management which is present in attempts to connect to Essbase before user disabled, inactive days etc.
If so, how to set it to shared services so that it applies to all users through different products.
Appreciate your answers, thank youHello
I don't think you can force users to be inactive before number of bad openings, inactive days etc. are not valid in Shared native directory services. I believe that this is because the shared services is shared by multiple applications, etc.
Normally, TAM, MSAD, etc. is used to force users to change their passwords, the duration, after which the password, etc.. These external directory services are user and leaves Hyperion management tools is for them.
Let me know if it helps.
See you soon
RS -
Migrate Essbase 11.1.2.2 security of Shared Services
Can someone point me to a useful guide for this?
Thank you
Robert.Tests - http://docs.oracle.com/cd/E17236_01/epm.1112/eas_help/sec_mode.html
See you soon
John
http://John-Goodwin.blogspot.com/ -
Hello
the questions I ask here is maybe a little stupid but would like to really know how can I achieve it.
For planning, I want to give users access to launch the BR & calc scripts, add/remove members, read and write numbers
for Essbase, I want to have users change/remove members of the outline and numbers read/write and run calc scripts.for Essbase I assigned the database manager to do so, but his does not work, for planning, I tried to apply user interactive & Planner and nothing.
Please can you me what can I use to achieve this? currently users accessing administrator access and want to take it and give what they need.
We use 11.1.13
Any help is greatly appreciated.
Thank you
For Essbase modify the outline, it should be database, documentation Manager
"Ability to edit the contours, create and assign filters, change the database settings and remove the locks/end of sessions and queries on the database." - http://docs.oracle.com/cd/E17236_01/epm.1112/esb_dbag/dsenative.html#dsemain1056833
Planning it would usually be the role of the administrator that allows maintenance of hierarchy
See you soon
John
-
Shared services security - is it even possible?
I want to know if the following is possible with the help of shared security services:
- I want to implement a MSAD group who will have to say 50 subgroups.
- I will define this super group as an external directory of the SS.
- I then assign security (roles and filters) for each of the groups of 50 cents.
- There will be no groups or users in the native directory.
- Based on the needs of users, team MSAD users one subgroup to another without connect to change the SSP.
- My expectation is when they move one subgroup to the other users, the user will have the safety of the group they have been moved to.
Is it possible to set security to shared services in this way? I've been experimenting and having a miserable time operate. I just know if I'm wrong or just wasting my time.
If you have LARGE MSAD never using groups MSAD!
ER
-
Shared Services security during the migration of LCM 11.1.2.1
I'm migrating a 1 environment to another planning application.
I remember vaguely (from some presentation) that once I export Shared security service that I need to edit the file to reflect the correct name of the Essbase server and import the Shared service security file.
This is a mandatory step? If so should which file I edit? It's just listing.xml or any other file as well?Yet you still didn't give any point, oh well.
See you soon
John
http://John-Goodwin.blogspot.com/ -
Automation of the operations of the group security Shared Services - Add / Remove / outsource
Hello
Is it possible to automate, add / outsource / remove users (external user) from a security group?
Earlier, I used to do this with MXL (change user...) but it seems that this approach is not taken in charge of 11.1.2.4 from.
Thank you...
There are a lot of messages and articles on LCM, everything you need to do is a little research.
There is also documentation of LCM - life cycle management
The LCM of SSP import options are available to- States Migration native Directory Import Options
What I recommend is to do the research, run an export of LCM of SSP, throw an eye on the format, have a look at the options available, create your import files, import into shared Services.
Once you are satisfied, you can start seek to automate using the LCM, the information is in the documentation link I provided
See you soon
John
-
11.1.1.4 success of migration of users of the Services shared but unable to see users
Hi all
I run LCM migration of exported 11.1.1.4 Directory native/roles of users/groups of SSP for the file system. And edited the .csv files and run the Utillity.bat.It showed the migration is successful but unable to see the users/groups/roles.
log file:
2012-01-23 01:57:54, 899 INFO - package to run file - D:/OracleHyperion/common/import_export/msr/PKG_5.xml
2012-01-23 01:57:56, 344 - URL HSS command line read INFO
2012-01-23 01:57:56, 344 - HSS URL INFO could not be read from the command line. Reading of the register.
2012-01-23 01:57:59, 174 INFO - Audit customer has been created for the server http://livq8webhy02.r1-core.r1.net:28080/interoperability/Audit
2012-01-23 01:58, 373 INFO - false enable state of the customer
2012-01-23 01:58, 729 INFO - false enable state of the customer
2012-01-23 01:58:06, 228 INFO - Audit customer has been created for the server http://livq8webhy02.r1-core.r1.net:28080/interoperability/Audit
2012-01-23 01:58:10, INFO - successful export - 501 / native/users
2012-01-23 01:58:11, INFO - successful export - 200 / Native Directory/groups
2012-01-23 01:58:11, 874 - successful export - INFO / Native repertoire/roles
2012-01-23 01:58:12, 520 INFO - export lists of successful directory/delegate - / native
2012-01-23 01:58:13, 700 - successful export - INFO / Native directory / assigned roles/Reporting and Analysis/Reporting and analysis
2012-01-23 01:58:14, 638 - successful export - INFO / Native directory / assigned roles, Foundation/Shared Services
2012-01-23 01:58:15, 818 INFO - export directory roles / attributed success/Native/Default Application Group/TESTAPP1
2012-01-23 01:58:16, 774 INFO - export directory roles / attributed success/Native/Default Application Group / TESTAPP
2012-01-23 01:58:17, 809 INFO - export directory roles / attributed success/Native/Default Application Group / SAMPLEAPP
2012-01-23 01:58:18, 783 INFO - export directory roles / attributed success/Native/Default Application Group/QACFGIT
2012-01-23 01:58:19, 727 INFO - export directory roles / attributed success/Native/Default Application Group/FSGQA
2012-01-23 01:58:20, 715 INFO - export directory roles / attributed success/Native/Default Application Group/FSGCCR
2012-01-23 01:58:21, 700 INFO - export directory roles / attributed success/Native/Default Application Group/CFGRPTG
2012-01-23 01:58:22, 693 INFO - export directory roles / attributed success/Native/Default Application Group/CFGCC
2012-01-23 01:58:23, 662 INFO - export directory roles / attributed success/Native/Default Application Group/AHPROD3
2012-01-23 01:58:24, 781 INFO - export directory roles / attributed success/Native/Default Application Group/AHPROD2
2012-01-23 01:58:25, 771 INFO - export directory roles / attributed success/Native/Default Application Group/AHEXP
2012-01-23 01:58:26, 965 INFO - Migration status - success
Please suggest me where I can find all users/groups/roles?
Published by: 907961 on January 24, 2012 01:07You can check the file SharedServices_Security_Client.log you can find it under the directory utility LCM or in the temp directory (% TEMP % or/var/tmp or/var/temp). Do you think that any subset of the users/groups/roles that you intend to import, or you do not see one any of them? If this log file does not help reduce the problem, you can change the Debug logging level in the user interface of shared Security Services and restart the Shared Services and then restart the import.
-
Hyperion Shared Services - security in excel file
Hi all
Is there a way we can get security information in a format that excel services, and then we can play with this excel file. Once the necessary changes are made, we import it referring to shared services.
We use active directory for user maintenance.
Kind regards
They are stored in the application of planning and the steps of Shared Services, the access permissions for the export of the planning applications using LCM or exportsecurity utility.
See you soon
John
-
Shared Services 11.1.2 cannot remove affected user to a security group
Shared Services 11.1.2 - trying to remove a user from the list of assigned users to a security group. Initially, I am able to delete the user and assigned users total decreases by one - but when I restart the properties of group - this user is still there? The change is not licensed. Any suggestion would be appreciated - thanks,
PaulHow about a quick restart HSS, see if this is useful and if not then:
What is a MSAD user or a native user?
It's happening with one user in all groups?
This is what is happening with more then one user/group?See you soon... !!
Rahul S. -
migration of users to 9.2.1 to 11.1.1.4 Hyperion Shared Services
Hi all
I used CSSExport.bat to export users of Hyperion 9.2.1 shared services, when iam trying to import users with CSSImport.bat its throwing error log4j, leaving no error on newspapers. I asked an application with Oracle, they said that using CSSImport.bat will not work in Hyperion 11.1.1.4.and we do not use LCM too. At this point they say 11.1.1.4 is a maintenance application so that we cannot do something in this part.
Can I have any other option to workaround.
appriciate your helpI find the best way to get used to the format required for LCM of first provision a user/group in shared services and then to perform an export of LCM, will give you an idea of the required format.
Change the output files with your new setting and then test the Import FCL through shared Services, if it works then create an XML migration when running step by step through the stages of SSP and then you should be fine using the command line utility.See you soon
John
http://John-Goodwin.blogspot.com/ -
Reports of security Shared Services
Hi guys,.
Could you please help me with a simple question (well, I think it's easy, but I am not able to answer... :))
I want to give a user permission to run reports on security, but it seems that it must be "Shared Services admin" to do. Is this correct? I can give him permission to run this kind of reports without giving him the role of "admin"?
I really appreciate your help.
Thanks yo!
Kind regards
NoOnly SSP administrators can create and view audit reports to follow the historical development of the security of the data.
Reference: Page 86 of the http://download.oracle.com/docs/cd/E17236_01/epm.1112/hss_admin.pdf
HTH-
Jasmine. -
Migration of LCM - Instance name? Shared services project name? Data source?
--------------------------------------------------------------------------------
Situation
--------------------------------------------------------------------------------
* We have hyperion 11.1.1.3.24
* Objective - trying to migrate files LCM of our DEV to UAT environment
* DEV LDCS alone has enabled planning application ("budget"), little EN reports & other related artifacts.
--------------------------------------------------------------------------------
Up to now
--------------------------------------------------------------------------------
* Successfully exported these 4 (EPMA, shared services, planning & EN) of our DEV
* When you try to import EPMA in our UAT, noticed that the State indicates failure. (Notice how claims have been reported in other posts as well.)
Another dilemma that I have what should I write on the name of the Instance, the name of the Shared services project & the data source.
* Instance name = >? I'm not sure. How to find it?
* Shared services project = > have not created one at all. Thus, those who do I use OR how do I know this?
* Data Source = > I guess, it would be the name of EPMA repository database?
Although I can migrate all the artifacts in our (the same as our DEV) UAT, Migration status showed as "failed". Is this due to the fact that I jumped Destination options with empty values (for example, shared services and data source). Has anyone ever had success on this stage of the Migration.
OR should I simply ignore this state of migration, because we can see all of the identical artifacts in our UAT.
Any help would be greatly appreciated.If you connect EPMA and choose an application and select deploy (don't worry, you don't have to deploy, you can cancel it until you do).
It displays a popup that will be the
Name of the instance (usually the default), Shared Services project (drop-down menu displays the groups of different applications available), the Data Source (this is the name you gave when you created the source of application data)See you soon
John
http://John-Goodwin.blogspot.com/ -
Security planning vs Essbase in Shared Services (v.11.1.2.2 and v.11.1.2.3)
Hello. Is it possible in v.11.1.2.3 or v.11.1.2.2 planning to restrict access through shared Services so that a user is forced to access data through a form of planning Planning Excel Smartview and that the user cannot directly access the Essbase cube and run ad-hoc queries? We try to apply data and governance processes so that users must perform their updates and queries via the planning of forms in SmartView calc Manager rules are executed, etc.Thank you!
You need to remove the access Essbase writable & rights special user for these users.
Maybe you are looking for
-
FireFox does not allow this. Please advise on how to fix!Much Appreicated! Note: I have already followed and repeated the instructions as to the time the problem fixed, but obviously it is not allow me access to the home page of my choice!
-
care of Apple if bought from another bank?
Hello! I want to buy my iphone from another store I get business benefits higher from there. What happens with apple care? Can I still buy it on the apple store?
-
I just upgraded to the 6s with 9.0.1 iOS apple iphone. Where can I find a PDF download for the manual?
-
How can I reset optimize for quick removal on USB that I don't see any more?
I installed a Drobo on my Vista 64 SP1 and became only on transer 12 MB/s on USB 2.0 speeds. I went into policies and changed the setting on the drive to optimize Performance. Come find out who is a no no with a Drobo. Is no longer, I can start or
-
How to replicate computer invited to another host
Hello guys,.I have essential kit more license and I have try to run the POS 6 host replication task A to 6 POS to host B, I thought of her guest computer clone of the host A to host B but to HOST B there is nothing.He was taken to plan the work to cl