Release 13.18A OTBI Catalog Lockdown
(Doc ID 2412231.1)
Last updated on MAY 28, 2019
Applies to:Oracle Fusion Application Toolkit Cloud Service - Version 11.13.18.02.0 and later
Oracle Fusion Project Control Cloud Service - Version 11.13.18.02.0 and later
Oracle Fusion Procurement Contracts Cloud Service - Version 11.13.18.02.0 and later
Oracle Fusion Financials Common Module Cloud Service - Version 11.13.18.02.0 and later
Oracle Fusion Global Human Resources Cloud Service - Version 11.13.18.02.0 and later
Information in this document applies to any platform.
Release 13.18A Factory BI Catalog Lockdown
To minimize upgrade regression, an enhancement has been introduced in the 13.18A release to permanently make the shipped BI catalog content read-only. If users attempt to modify the shipped BI catalog content including folder permissions, they will receive an alert "You are not allowed to modify factory content. Save your own content in /Shared/Custom." Customers that upgrade from R12 to R13 will no longer be able to make changes to the delivered BI catalog even with BI Administrator role. Starting with R13.18A, BI catalog folders will behave as follows:
You must save all custom content in /Shared/Custom folder or create new sub-folders under /Shared/Custom to maintain custom content.
Except for /Shared/Custom folder, customers can no longer make any modifications to the delivered BI catalog. If a user attempts to add, change or remove any object including permission list in the delivered catalog folder, he/she will get an error "You are not allowed to modify factory content. Save your own content in /Shared/Custom."
Customers are permitted to retain EXISTING custom top-level folders under Shared. All existing content in those top-level custom folders will be preserved.
Customers cannot add, remove or change permissions on the shipped folders, e.g. /Shared/ Human Capital Management
Customers cannot modify the folder permissions to 'hide' the shipped factory catalog folder, e.g. hide /Shared/Marketing.
Impact on R12 upgrade customers:
For customers upgrading from R12, all existing custom content in /Shared/Custom or custom folders under /Shared and their sub-folders will remain as they are. However, if you have modified the content in the delivered BI catalog folders, e.g. added custom reports, modified delivered reports, modified folder or report permission, all changes to this content will be lost after the R13 upgrade. You are advised to archive custom BI catalog to a file prior to R13 upgrade; and after R13 upgrade you can unarchive the custom projects in the /Shared/Custom folder.
Fusion application users are auto-provisioned with BI Consumer role, which allows them to read and traverse the BI catalog folders. This access is for folder viewing and navigation only and doesn't give the user the privilege to view, open, edit and execute BI reports, for which the user has no security authorization. An enhancement is in development to restrict access to BI catalog folders such that a user will no longer be able to see and traverse BI catalog folders that he or she has no security authorization to access.
Due to catalog lockdown, after upgrade to Release 13.18A of Fusion Application, you will receive notification as seen bellow:
Please refer to the following Customer Connect notes for further information:
R13.18A OTBI BI Catalog Lockdown (HCM Reporting & Analytics forum): https://cloudcustomerconnect.oracle.com/posts/afc45060ac
R13.18A OTBI BI Catalog Lockdown (ERP Reporting & Analytics forum): https://cloudcustomerconnect.oracle.com/posts/2a21ef8098
R13.18A OTBI BI Catalog Lockdown (Sales Reporting & Analytics forum): https://cloudcustomerconnect.oracle.com/posts/3b4979d9da
R13.18A OTBI BI Catalog Lockdown (SCM Reporting & Analytics forum): https://cloudcustomerconnect.oracle.com/posts/1b0d7de3f
Current ETA for ER 28108026 implementation is Fusion Application Release 19C.
Please note that the above ETA can suffer changes.
OTBI reports are secured by OTBI duty roles which inherit BI Consumer role. In order for you to access Fusion-shipped reports, OTBI has granted 'BI Consumer' Read/Traverse access to the entire BI catalog. This causes all OTBI users to see and navigate the entire BI catalog even though they can't see, or execute the 'unsecured' reports.
Future Enhancement Request 28108026 will allow to use Hide option within BI Catalog.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document