OBIEE 12c: Application Roles Do Not Take Effect for Active Directory Users when the User Name Attribute is sAMAccountName

(Doc ID 2117570.1)

Last updated on JUNE 19, 2017

Applies to:

Business Intelligence Suite Enterprise Edition - Version 12.2.1.0.0 and later
Business Intelligence Reporting and Publishing - Version 12.2.1.1.0 to 12.2.1.1.0 [Release 12c]
Information in this document applies to any platform.

Symptoms

ACTUAL BEHAVIOR
---------------
Unable to assign user membership to the Application Roles in Fusion Middleware Control ( EM ).

The users appear with different ID's, but not actual names that appear in Weblogic Console.

 

For example:
In EM, a user, Jane Doe, is added to an Application Role (for example, BIAdministrator). The User was located using the Display Name option (for example, Display Name > Starts With = Jane).

When the user logs into /analytics as 'jdoe', which is the sAMAccountName value, the user does not acquire the Application Role (for example, in My Account > Roles and Catalog Groups.
The users only sees Authenticated User and BI Consumer listed, and there is no Administration link in the Global Header.



EXPECTED BEHAVIOR
-----------------------
Should be able to assign users to the Application Roles


STEPS
-----------------------
The issue can be reproduced at will with the following steps:



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms