OBIEE 11g-12c: Users Not Listed In The LDAP Authenticator Under "Users and Groups" Can Still Log In To Analytics

(Doc ID 2220462.1)

Last updated on JANUARY 06, 2017

Applies to:

Business Intelligence Suite Enterprise Edition - Version 11.1.1.7.0 and later
Information in this document applies to any platform.

Symptoms

You configure a LDAP Authenticator (OID, AD, etc.) in the Weblogic console and defined the LDAP filters in the Provider Specific tab to filter users based on user membership to specific groups.
After doing that, only users who are members of those groups get populated under Weblogic console -> Users and Groups.
However, in Analytics, any user who is under the "User Base DN" specified in the Provider Specific tab in the Weblgoic console for your LDAP server can login although the user is not member of any of those LDAP groups and is not listed in Weblogic under Users and Groups.

Changes

LDAP authenticator was configured.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms