Presentation is loading. Please wait.

Presentation is loading. Please wait.

6 Copyright © 2007, Oracle. All rights reserved. Managing Security and Metadata.

Published byEugene Reed Modified over 8 years ago

Similar presentations

Presentation on theme: "6 Copyright © 2007, Oracle. All rights reserved. Managing Security and Metadata."— Presentation transcript:

1 6 Copyright © 2007, Oracle. All rights reserved. Managing Security and Metadata

2 Copyright © 2007, Oracle. All rights reserved. 6 - 2 Objectives After completing this lesson, you should be able to do the following: Perform security and user management tasks through the OWB Design Center graphical user interface Review object deployments and execution jobs by using Repository Browser

3 Copyright © 2007, Oracle. All rights reserved. 6 - 3 Warehouse Builder Users Warehouse Builder users are regular database users. Users can be created in the OWB client in one of the following ways: –On top of existing DB users –As a completely new user (OWB creates a new DB user) If you are an OWB user, you have access to the OWB repository. If you are an OWB user, you can be: –An administrator of the repository –An owner of a target –A regular repository user without owning a target Control is given to users via roles or privileges.

4 Copyright © 2007, Oracle. All rights reserved. 6 - 4 Warehouse Builder User Considerations If you need a target user, register it in the OWB Security node in Global Explorer. –The user is associated with a control center. –The user gets synonyms to the audit APIs. –You can deploy mappings only into a target user. You can deploy DDL objects, such as tables, into a nontarget user.

5 Copyright © 2007, Oracle. All rights reserved. 6 - 5 Global Explorer Objects Security node is seen only by users granted the ADMINISTRATOR role.

6 Copyright © 2007, Oracle. All rights reserved. 6 - 6 Graphical UI for Security Management Define access privileges that are available to each user and role. Grant access privileges to users and roles for a given object. In this example, the EVERYONE role gets FULL_CONTROL, EDIT, COMPILE, and READ of the PRODUCTS dimension. 2 1 Only the repository owner and other users granted the ADMINISTRATOR role see the Security node.

7 Copyright © 2007, Oracle. All rights reserved. 6 - 7 Access Privilege Policies Maximum access privilege policy The default security policy “No security” All users get the object privilege of FULL_CONTROL through the EVERYONE role. Minimum access privilege policy “Least privileges” All users get the object privilege of NONE through the PUBLIC role. You can right-click any object in the Project Explorer and set its security separately.

8 Copyright © 2007, Oracle. All rights reserved. 6 - 8 Registering Database Users as Warehouse Builder Users 1 2 3

9 Copyright © 2007, Oracle. All rights reserved. 6 - 9 User Tabs Important: By default, when you create a new user, that user has the EVERYONE role, which has full control on all objects. To enable metadata security, be sure to edit all user profiles and restrict the access that the EVERYONE role has to objects each user creates.

10 Copyright © 2007, Oracle. All rights reserved. 6 - 10 ADMINISTRATOR Role Tabs

11 Copyright © 2007, Oracle. All rights reserved. 6 - 11 EVERYONE Role Tabs

12 Copyright © 2007, Oracle. All rights reserved. 6 - 12 Security Access Privileges Title bar indicates read/write or read-only mode. An attempt to edit a read-only object results in a warning. An attempt to delete an object in read-only mode results in a warning.

13 Copyright © 2007, Oracle. All rights reserved. 6 - 13 Data Security “Who can see data in a location?” Controlled via location definitions For example, you can revoke privileges on production locations for nonprivileged users. Data Viewers do not show data for those locations to which OWB users have had such privileges revoked.

14 Copyright © 2007, Oracle. All rights reserved. 6 - 14 Setting Security Parameters “Persist location password in metadata” eliminates the need to reenter a password.

15 Copyright © 2007, Oracle. All rights reserved. 6 - 15 Setting Security Parameters Minimum security is the default, giving all users full access to all objects.

16 Copyright © 2007, Oracle. All rights reserved. 6 - 16 Password Security Behaves Differently When Using Oracle Database Standard Edition Password security in OWB relies on the Oracle Advanced Security Option (ASO) available only in Oracle Database Enterprise Edition. If you run OWB 10g Release 2 on Oracle Database 10g Standard Edition: –In Design Center, passwords are not persisted across sessions, even if the setting of the “Persist location password in metadata” user preference is set to True. –When registering locations in the control center, the password is sent over the network unencrypted but stored securely and encrypted. –When you execute a job such as a mapping, the control center typically reads a password from the run-time repository to connect to the target system. This password is also sent over the network unencrypted.

17 Copyright © 2007, Oracle. All rights reserved. 6 - 17 Repository Browser An HTML-based interface to view and generate reports on all repository metadata objects and the relationships among those objects

18 Copyright © 2007, Oracle. All rights reserved. 6 - 18 Common Repository Browser Tasks Identify a recently run mapping or process flow Identify the latest deployments Identify data objects deployed to a specific location Remove old deployment or execution audit details Re-execute, abort, or monitor a process run

19 Copyright © 2007, Oracle. All rights reserved. 6 - 19 Starting OWB Browser Listener

20 Copyright © 2007, Oracle. All rights reserved. 6 - 20 Logging In to Repository Browser

21 Copyright © 2007, Oracle. All rights reserved. 6 - 21 Browsing Design Repository Reports

22 Copyright © 2007, Oracle. All rights reserved. 6 - 22 Browsing Control Center Reports

23 Copyright © 2007, Oracle. All rights reserved. 6 - 23 Types of Control Center Reports All of these reports may be useful to an OWB administrator.

24 Copyright © 2007, Oracle. All rights reserved. 6 - 24 Object Summary Report

25 Copyright © 2007, Oracle. All rights reserved. 6 - 25 Execution Summary Report

26 Copyright © 2007, Oracle. All rights reserved. 6 - 26 Start, Abort, and Monitor a Process or a Mapping Stop Execution Expedite Execution

27 Copyright © 2007, Oracle. All rights reserved. 6 - 27 Summary In this lesson, you should have learned how to: Perform security and user management tasks through the OWB Design Center graphical user interface Review object deployments and execution jobs by using Repository Browser

28 Copyright © 2007, Oracle. All rights reserved. 6 - 28 Practice 6-1: Managing Security and Metadata This practice covers the following topics: Assigning security by using the Design Center graphical interface Viewing design and control center reports by using Repository Browser

Download ppt "6 Copyright © 2007, Oracle. All rights reserved. Managing Security and Metadata."

Similar presentations

4 Copyright © 2005, Oracle. All rights reserved. Managing the Oracle Instance.

4 Copyright © 2005, Oracle. All rights reserved. Managing the Oracle Instance.
5 Copyright © 2006, Oracle. All rights reserved. Securing Grid Control.

5 Copyright © 2006, Oracle. All rights reserved. Securing Grid Control.
Administering User Security

Administering User Security
Configuring Recovery Manager

Configuring Recovery Manager
9 Copyright © Oracle Corporation, 2001. All rights reserved. Oracle Recovery Manager Overview and Configuration.

9 Copyright © Oracle Corporation, All rights reserved. Oracle Recovery Manager Overview and Configuration.
Project Implementation for COSC 5050 Distributed Database Applications Lab1.

Project Implementation for COSC 5050 Distributed Database Applications Lab1.
5 Copyright © 2009, Oracle. All rights reserved. Defining ETL Mappings for Staging Data.

5 Copyright © 2009, Oracle. All rights reserved. Defining ETL Mappings for Staging Data.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
C Copyright © 2009, Oracle. All rights reserved. Using Diagnosis and Debugging Techniques.

C Copyright © 2009, Oracle. All rights reserved. Using Diagnosis and Debugging Techniques.
2 Copyright © 2009, Oracle. All rights reserved. Getting Started with Warehouse Builder.

2 Copyright © 2009, Oracle. All rights reserved. Getting Started with Warehouse Builder.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.

C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.
4 Copyright © 2009, Oracle. All rights reserved. Designing Mappings with the Oracle Data Integration Enterprise Edition License.

4 Copyright © 2009, Oracle. All rights reserved. Designing Mappings with the Oracle Data Integration Enterprise Edition License.
Hands-On Microsoft Windows Server 20081 Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.

Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
CHAPTER 6 Users and Basic Security. Progression of Steps for Creating a Database Environment 1. Install Oracle database binaries (Chapter 1) 2. Create.

CHAPTER 6 Users and Basic Security. Progression of Steps for Creating a Database Environment 1. Install Oracle database binaries (Chapter 1) 2. Create.
15 Copyright © 2005, Oracle. All rights reserved. Performing Database Backups.

15 Copyright © 2005, Oracle. All rights reserved. Performing Database Backups.
Copyright 2000 eMation SECURITY - Controlling Data Access with

Copyright 2000 eMation SECURITY - Controlling Data Access with
Managing User Accounts. Module 2 – Creating and Managing Users ♦ Overview ► One should log into a Linux system with a valid user name and password granted.

Managing User Accounts. Module 2 – Creating and Managing Users ♦ Overview ► One should log into a Linux system with a valid user name and password granted.
9 Copyright © 2005, Oracle. All rights reserved. Administering User Security.

9 Copyright © 2005, Oracle. All rights reserved. Administering User Security.
5 Copyright © 2009, Oracle. All rights reserved. Right-Time Data Warehousing with OWB.

5 Copyright © 2009, Oracle. All rights reserved. Right-Time Data Warehousing with OWB.

Similar presentations

Ads by Google