OBIEE 12c: Using The Impersonation Feature '&impersonate=impersonated_user Is Prompting For User Name and Password
(Doc ID 2327957.1)
Last updated on AUGUST 08, 2023
Applies to:
Business Intelligence Suite Enterprise Edition - Version 12.2.1.3.0 to 12.2.1.4.0 [Release 12g]Information in this document applies to any platform.
Symptoms
- You would like to use the impersonation feature with a URL like this:
http://<HOSTNAME>:<PORT>/analytics/saw.dll?Dashboard&NQUser=<USERNAME>&NQPassword=<PASSWORD>&impersonate=<IMPERSONATED_USERNAME> - After enabling the impersonation configuration steps below, it will prompt for user name and password
Note: Act As functionality [Enabling Users to Act for Others ] is recommended unless you have a specific need for for Impersonation.
Steps to configure Impersonation
- Configuring the Impersonate User in Oracle Business Intelligence 12c
- The 11g Oracle.bi.server.impersonate user permission does not exist in 12c. To create a user or application role with permission to impersonate, you must create a permission grant using the Resource Type oracle.bi.user, with a name of an asterisk (*) and an action of "impersonate".
- Connect to Fusion Middleware Control for your Oracle BI EE instance using an administrator account.
- From the Weblogic Domain menu, select Security.
- Click Application Policies.
- Click Create to display the Create Application Grant page.
- In the Permissions section, click Add (+).
- Select Resource Types.
- Select oracle.bi.user from the Resource Type list.
- Click Continue to display the Add Permission dialog.
- Enter an asterisk (*) in the Resource Name field.
- Select impersonate in the Permission Actions section.
- Click Select.
- Now add a new grantee.
- In the Grantee section click Add (+) to display the Add Principal dialog.
- Note: You can choose to grant the newly created permission to either an application role or a user. In this example, we choose a user.
- Select User from the drop-down list.
- Select Includes from the Principal Name list, and enter an asterisk (*) into the field.
- Click the search arrow icon (>) to display a list of users.
- Select the user you want to give the permission to and click OK.
- This example uses "WebLogic".
- Click OK on the Create Application Grant page.
- This gives the impersonate permission to the user.
Documentation About Creating and Using Impersonate User is Incorrect
Changes
Lightweight Single Sign on (LWSSO) is enabled
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |