OBIEE Security integration with EBS
The assumption that the RPD settings from the Source instance remain the same. You have to log in to EBS to access OBIEE.
Important Points
a) E-Business Suite and OBIEE URL's are on the same domain
b) E-Business Suite and OBIEE are both using the same security protocol. When E-Business Suite and OBIEE are configured for different security protocols, for example, E-Business Suite for HTTPS and OBIEE for HTTP, then the cookie will not be passed and hence cannot be seen from the OBIEE URL browser, and the integration will fail. So E-Business Suite and OBIEE need to be either on HTTP or HTTPS.
On OBIEE server
Update authenticationschemas.xml
Update the authenticationschemas.xml file to add the name of the EBS ICX authentication cookie.
To update authenticationschemas.xml:
Open the file authenticationschemas.xml for editing. You can find this file at:
$ORACLE_HOME/bifoundation/web/display
Find the following element:
<AuthenticationSchema name="EBS-ICX">
Locate the sub-element RequestVariable source=”cookie” and change the value of the nameInSource attribute from ICX_SESSION to the name of the EBS ICX authentication cookie prefix. For example:
<RequestVariable source="cookie" type="auth" nameInSource="<strong>TERP</strong>" biVariableName="NQ_SESSION.ICX_SESSION_COOKIE" />
Do not update the RequestVariable source=”url” sub-element.
To know your Oracle E-Business Suite the name of the EBS ICX authentication cookie if you do not know it. Alternatively, follow these steps to find the cookie name:
Log in to Oracle E-Business Suite on chrome and follow below
The cookie is displayed like TERP=sQAQGTMiWM61kvi1RD4Hbwr1qi
The value you need to provide in authenticationschemas.xml is the prefix of the EBS ICX authentication cookie.
In this example, the EBS ICX authentication cookie is like TERP=sQAQGTMiWM61kvi1RD4Hbwr1qivm, and the prefix is TERP.
Find the following element:
<SchemaKeyVariable source="cookie>
Change the value of the nameInSource attribute from ICX_SESSION to the name of the EBS ICX authentication cookie prefix . For example:
<SchemaKeyVariable source="cookie" nameInSource="TERP" forceValue="EBS-ICX"/>
Save and close the file.
Update instanceconfig.xml
Update the instanceconfig.xml file to add EBS ICX as one of the enabled schemas, and set it as the default. You must update the instanceconfig.xml file to configure login and logout information.
To update instanceconfig.xml:
Open the file instanceconfig.xml for editing. You can find this file at:
$ORACLE_INSTANCE/config/OracleBIPresentationServicesComponent/coreapplication_obipsn
Locate the Authentication element.
Include EBS ICX in the list of enabled schemas. For example:
<EnabledSchemas>UidPwd,Impersonate,UidPwd-soap,Impersonate-soap,<strong>EBS-ICX</strong></EnabledSchemas>
Ignore the comment in instanceconfig.xml that says this setting is centrally managed. EBS ICX must be manually added to the EnabledSchemas element.
Locate schema name and update EBS URL
<Schema name="EBS-ICX" logoffURL="http://funebs122.lab:8030/OA_HTML/OA.jsp?OAFunc=OAHOMEPAGE"/>
Save and close the file.
Restart Oracle Business Intelligence services.
1 Comments
Hi, can you plz help to replicate these steps in OAS
ReplyDeletePost a Comment