Skip to content

Security in HFM

February 24, 2014

In this post, I will discuss Security and the role is has within HFM applications. I will show how to change user access for different Security Classes, and also how to create a new user in an application. Both of these topics are very significant for assigning accessibility to your new HFM application.

The Security Class within HFM is very important when setting up your new application. They allow you to specify who is allowed to see different things within the application. You can restrict which accounts someone has access to, which entities they can see, different scenarios they can look at, which Inter Company Partners they can see, and the access to different custom dimensions. After the Security Class has been associated with a certain dimension, you can assign the user privileges to those classes. This is done in Shared Services.

Image

Once in Shared Services, you can assign access control for users and determine which access type users can have per security class.

Image

The Default access type is None, meaning there is no security for that user with those Security Classes. There are five access types: None, Metadata, Read, Promote, and All.

Image

Since I am the Administrator User, I have set the access for all the classes to All.

Image

You can also create new users within the Shared Services Console. Right-click on User to pull up that option.

Image

Image

Once you have created the user, you need to assign it to an application. You do so by Right-clicking the user, and selecting Provisions.

MWSnap008

Then find and select the application you want to give the user access to.

MWSnap009

After you find the application, you must give the user a role. The role I gave User2 was the Consolidate All with Data Role.

MWSnap010

After you click OK, you will get a screen that tells you every role that has been assigned to that user.

MWSnap011

From there, you can determine which access to give the new user in the existing Security Classes.

MWSnap012

I gave User2 access to the US and EUROPE Security Classes.

MWSnap013

Now User2 will only be able to run Consolidate All with Data in those two Security Classes.

Advertisements

From → Oracle, Oracle EPM

Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: