Oracle Cloud Infrastructure Documentation

Configure Object Permissions

Configure the permissions for objects such as subject areas and its elements with the ready-to-use or the custom-created duty roles.

You secure the subject areas and their elements using the Configure Object Permissions, a prebuilt single step. You edit this single step to specify the subject areas, their elements, and the duty roles to secure these with. The elements that you can secure are from the Main branch. Hence, if you need a newly added object to be secured, then you must ensure that the branch containing the newly added object is merged with the Main branch before configuring the security. If a custom-created role is no longer available, then the security configuration for that role is automatically updated in the existing Configure Object Permissions step.

For the front-end objects such as key metrics and workbooks, set the permissions individually for each object by adding the applicable duty role and the corresponding access.

By default, the list of permissions by duty role displays the explicit permissions set for the subject area or the elements of the selected subject area. If you want to add more permissions, then select the duty role from the list and set the required permission. Permission levels that you can set are:
  • Default (inherited from the parent element).
  • No Access (deny access to the respective subject area or its elements)
  • Read-only (access to read the respective subject area or its elements).

Repeat the operation for all the subject areas or the subject area elements that you need to secure.

  1. Sign in to your service.
  2. In Oracle Fusion Data Intelligence Console, click Semantic Model Extensions under Application Administration.
  3. On the Semantic Model Extensions page, click Security Configurations.
    You see your existing security configurations and the prebuilt object permissions-related step.
  4. In the Security Configurations region, search for the prebuilt "Configure Object Permissions", and hover over it to view Actions, and then click Edit.
  5. In step 1 of the wizard, click Next.
  6. In step 2 of the wizard, select the subject areas or elements and set the corresponding desired permission to the duty role selected from the list, and then click Next.
  7. Review your changes and click Finish.