odi user and security

ODI Users and Security:

1) Creating users in ODI

Go to security tab. Expand Users window. Click on icon as shown below.

Provide user name and click on “Enter a Password” for password authentication.

Provide password expiration date on which password gets expired.

Similarly provide Account Expiration details.

Click on Save and the user will be created. Now create a new connection for newly created user

Search for work repository

It will not show any work repository for connections as below.

Now connect to master repository and grant CONNECT profile to user Developer. Drag and drop CONNECT from profiles tab to Developer is Users tab.

Now again go to connection for user Developer and check work repositories are displaying or not

Select the work repository for connection and connect to user Developer CONNECT : The basic profile to connect an ODI repository, it is like CREATE

SESSION privilege on Oracle Databases. It has some more rights like viewing some objects. You can see objects if you click + next to CONNECT.

Check all the tabs (Designer,Topology,Operator,Security). You will find nothing and wont be able to create any new object

Login to Master Repository and similarly grant Designer profile to user developer. Now login to user Developer and check the designer tab. You will find all the objects

of that work repository under designer tab and you can create new objects also

DESIGNER : This is where our codes are. There are interfaces, procedures, scenarios, packages, projects, variables in designer. And designer profile gives privileges to create, edit, delete ability for these objects.

On designer tab under models section try to add a new model or add datastore to existing models. You won’t be allowed to do that.As on below screen shot all the fields are disable.

Now connect again to master repository and grant METADATA ADMIN profile to user Developer

Now login to user Developer and you will find that you have privileges to create new model etc.

METADATA ADMIN : This is actually about Model accordion. Model is the place where data stores’ metadata are being held. Like tables, files, web services and other data stores. METADATA ADMIN gives you ability of create, edit, view and delete of Model objects or Model folders

Now login with master repository and grant OPERATOR profile to user Developer. OPERATOR : Operator has sessions’ information, load plans, scenarios … etc.

Actually running codes, and their sessions are being held in this tab. By using operator you can see errors, see successful runs, re-run scenarios.

After granting all this roles the user still won’t be able to create any new connection in Topology tab as below

So connect to master repository again and grant TOPOLOGY ADMIN to user Developer

Now connect to user Developer. You will be able to create new connections

TOPOLOGY ADMIN : Topology is where you have connection information to data stores, TNS info for a table’s database or path of a file or URL of a web service. All connections are stored here

This completes the Developer user and we have assigned all the necessary privileges to the user. If you do not want the user to create any new connections or modify existing connections then simply remove the TOPOLOGY ADMIN profile from the user.