Unable To Restrict Users from Viewing ODI Datastore Data in the ODI Interface
(Doc ID 1055432.1)
Last updated on JUNE 16, 2022
Applies to:
Oracle Data Integrator - Version 10.1.3.4.7 to 10.1.3.6.0Information in this document applies to any platform.
Symptoms
The issue is raised from the ability to revoke viewing or displaying privileges of data in the Source or Target Datastores from the Oracle Data Integrator (ODI) User using ODI Security Manager.
When the data is in the Datastore of the Model, the view data or data privileges can be revoked from the ODI User by using ODI Security Manager.
The problem is, this privilege does not remove the access to the data when the Datastore is present in an ODI Integraton Interface as a Source or Target in the Diagram tab. The user can right clickand view data and/or edit the data when present as such.
If there is sensitive data which needs to be hidden from the view of the users there is no obvious way of revoking privileges to the ODI User or Profile for viewing or displaying the data from the Interface source and target Datastores.
This can be observed by performing the following steps:
- Create a new user in the ODI Security Manager.
- Grant Connect profile to the user.
- Right Click and duplicate the NG Designer profile and call it NG View Designer.
- Expand the new NG View Designer profile, find Datastore and make sure the View Data and Data methods generic privileges boxes are unchecked.
- Grant the NG View Designer profile to the user (created in step 1).
- Login to Designer with this user and check that the user is not able to view data from the ODI Model tree.
- Create an ODI Interface using these Datastores.
- Right click on the source/target Datastores in the ODI Interface Diagram tab to check that the options should be disabled.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |