360view business objects xi3.x new security concepts
DESCRIPTION
What's new in Xi 3.x security? New Business Objects XiR3 or Xi 3.x security model.TRANSCRIPT
![Page 1: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/1.jpg)
New BOE Xi 3.x security concepts
![Page 2: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/2.jpg)
1 BO5 or BO6 security concepts
2 BOE Xi R2 security concepts
3 BOE Xi 3.x security: What’s new ?
4 Migration and implementation: Challenges
5 360view: replace the CMC, security
administration is so easy
![Page 3: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/3.jpg)
• Security definition: User rights and restrictions = links between actors ( user or
group ) and universes – universe overloads, documents, applications-security
commands, domains and stored procedures.
• Supervisor: “user centric” security vision.
• “user centric” security implementation
• Group inheritance: Nearest value selected.
• Only 3 ways to implement security. Easy to administrate.
• A user can belong to more than one group: User instances.
• Effective right calculation depending on object.
BO5 or BO6 security: Reminder
![Page 4: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/4.jpg)
1 BO5 or BO6 security concepts
2 BOE Xi R2 security concepts
3 BOE Xi 3.x security: What’s new ?
4 Migration and implementation: Challenges
5 360view: replace the CMC, security
administration is so easy
![Page 5: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/5.jpg)
BOE Xir2 security concepts: Folders• Under BOE Xir2, universes and documents are stored within folders.
• Objects can be stored in one folder only. There are four folder trees.
• Think like Windows. It is a set of doors.
Unlimited folder tree (documents & universes)
![Page 6: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/6.jpg)
BOE Xir2 security concepts: Groups
• Group structure is no longer a classic tree like under legacy BO. A group can belong to more than one group. A kind of acyclic graph:
• Create two group trees: Functional groups and technical groups.
![Page 7: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/7.jpg)
BOE Xir2 security concepts: Users
• A user can belong to more than one group (the Everyone group, a technical group and a functional one).
![Page 8: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/8.jpg)
BOE Xir2 security concepts: Security matrix
Explicit right Closed system Inherited right
Double héritage: Dossier et Groupe
Rights double inheritance: Folder and Group
![Page 9: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/9.jpg)
BOE Xir2 security concepts: Rights overloads
• Explicit rights override inherited rights:
![Page 10: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/10.jpg)
BOE Xir2 security concepts: Rights
• 3 possible explicit values on security commands:
- Explicitly granted (OK): User or group is given the right.
- Explicitly denied (KO): User or group is denied the right.
- Not specified (NA): No right assignment.
• Effective rights (user real rights) = explicit rights aggregation.
Note: “NS” means “Not Specified
• “ NS ” can be largely used because it does not have any effect on effective rights calculation. Used with “ OK ” or “ KO ”, it is transparent.
NS OK KO OK+NS KO+NS OK+KO
Xir2 Objects KO OK KO OK KO KO
![Page 11: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/11.jpg)
1 BO5 or BO6 security concepts
2 BOE Xi R2 security concepts
3 BOE Xi 3.x security: What’s new ?
4 Migration and implementation: Challenges
5 360view: replace the CMC, security
administration is so easy
![Page 12: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/12.jpg)
BOE Xi 3.x security: General info
• New CMC interface: Training session needed.
• No modification on contents / actors:
- Folders organization remains the same: 4 folder trees.
- No change on groups structure.
- Still 2 category trees.
- Servers and connections unchanged.
• New kind of objects: Access level are objects like others.
- Predefined Access Level (NA, VOD, FC …).
- Custom profiles. Set of security commands.
- Security on them within a matrix.
- Advanced rights still exist.
![Page 13: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/13.jpg)
BOE Xi 3.x security: Rights
• Rights are now divided in collection: General, Content, Application and System.
• Rights have been duplicated on content: Hundreds of rights.
• Content rights overload general rights.
General right set: Schedule Objects prohibited
Content right overloads General settings:
Schedule Deski Documents allowed.
Net result:
Schedule documents not allowed except Deski documents.
![Page 14: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/14.jpg)
BOE Xi 3.x security: Folder / Object
• Content rights possible on Folders.
• Descending right: Add object.
• Ascending right: Delete object.
General right set: Add Objects allowed.
Content right overloads General settings: Add Subfolder not allowed.
Net result:
Add Subfolder not allowed.
Add Documents allowed.
![Page 15: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/15.jpg)
BOE Xi 3.x security: Universes list
• Granularity possible on accessible Universes.
• List of universes to refresh documents:
• List of universes to create / modify queries:
![Page 16: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/16.jpg)
BOE Xi 3.x security: Folder inheritance 1/2
• You can specify whether or not a right is applied at: - Object level (only at door level) - Sub Object level - Or both.
![Page 17: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/17.jpg)
BOE Xi 3.x security: Folder inheritance 2/2
• Impact on rights inheritance:
Right only applied for one door and not to sub doors!
![Page 18: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/18.jpg)
BOE Xi 3.x security: Inheritance
• It is possible to override explicitly denied rights.
• It is possible to explicitly deny a right at a top level and then explicitly granted the
same right at a lower level (without breaking inheritance like in Xi r2):
![Page 19: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/19.jpg)
BOE Xi 3.x security: Security settings
• First door is no longer transparent.- You can no longer applied NA access level to all top level doors.
• You can apply multiple rights at one intersection.
![Page 20: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/20.jpg)
BOE Xi 3.x security: Effective rights
• Effective rights (user real rights) = explicit rights aggregation.
Note: ‟NS” means ‟Not specified”
• Rights inherited from groups. Could be multiple rights.
• Effective rights calculation now also depends on:
- Rights set on Content.
- Type of folder inheritance.
NS OK KO OK+NS KO+NS OK+KO
Xi 3.x Objects KO OK KO OK KO KO
![Page 21: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/21.jpg)
BOE Xi 3.x security: What’s new?
• You can apply right at content level. Content rights override general rights.
• You can override an explicitly denied right at a lower level.
• You can apply a right at folder level and at sub folders level.
• You can apply multiple rights between a folder and a group.
• You can apply granularity on the list of universes you want to use for report creation or modification.
![Page 22: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/22.jpg)
1 BO5 or BO6 security concepts
2 BOE Xi R2 security concepts
3 BOE Xi 3.x security: What’s new ?
4 Migration and implementation: Challenges
5 360view: replace the CMC, security
administration is so easy
![Page 23: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/23.jpg)
Xi security implementation / migration: Challenges
• BOE Xi 3.x security model is powerful.
• Understand the new security concepts. Take advantage of them. Redesign your security model.
• Challenges of security migration or implementation:
Challenge 1:Manage the repository post migration or post implementation, whilst limitingadministration tasks and by offering an optimum quality of service to end-usersChallenge 2:Implement and Document your Xi security.
![Page 24: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/24.jpg)
1 BO5 or BO6 security concepts
2 BOE Xi R2 security concepts
3 BOE Xi 3.x security: What’s new ?
4 Migration and implementation: Challenges
5 360view: replace the CMC, security administration is so easy
![Page 25: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/25.jpg)
• Solutions for SAP BO administration & migration
• Supporting XIR2, XI3, BI4.0 and BI4.1
• Almost 400 customers worldwide:
![Page 26: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/26.jpg)
360suite: Top ten features
1. Manage security using web matrices
2. Document (Excel export) your CMS (security matrices, groups, users, universe overloads …)
3. Schedule backup of your entire Business Objects platform
4. Selective restore of any version including deleted or corrupt content (like personal documents)
5. Perform impact analysis (universe object and SQL, unv and unx)
6. Run jobs (backup, import users, Excel exports …) using an Enterprise Job Scheduler (Control-M, Dollar Universe, UC4, TWS…)
7. Promote content using a drag and drop or schedule promotion.
8. Dynamically burst BO reports.
9. Optimize migration: audit, clean, compare versions.
10. Follow your BOE metadata evolution through time.
![Page 27: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/27.jpg)
Where our solutions take place?
![Page 28: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/28.jpg)
• User friendly web interface
to manage Xi security.
• Document your deployed
security.
• Audit and clean
your CMS.
![Page 29: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/29.jpg)
• Backup, version and restore content.
• Drag and drop objects between CMS or schedule migrations.
• Compare SAP Business Objects environments
![Page 30: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/30.jpg)
• Schedule SAP Business Objects reports from an Excel, CSV spreadsheet or a SQL query.
• Dynamic scheduling and bursting:
- Fill in prompt, filter, format and destination values within Excel, CSV or SQL.
- Any modification within Excel, CSV or SQL will dynamically impact your results.
• Schedule your reports using your enterprise scheduler
(Control M, Dollar Universe, VTOM…).
![Page 31: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/31.jpg)
• Load all your SAP Business Objects data within a data warehouse.
• Query and analyze these data using BO universes and Webi reports.
• Document your deployment:- Detect unused documents and universes.- Run impact analysis.
• Follow the evolution of your metadata through time.
• Compare environment or BO versions during a
migration.
![Page 32: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/32.jpg)
![Page 33: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/33.jpg)
• Compare your SAP Business Objects license pool with the licenses you have deployed.
• License compliance is just a
mouse click away.
![Page 34: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/34.jpg)
• SAP BusinessObjects custom portals. Infoview or BI Launch Pad substitution
• Fully integrated within intranet
![Page 35: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/35.jpg)
BI4 Migration Pack
• The fusion of 360view and 360eyes in a same package.
• Find out exactly what you need to migrate
• Prepare the Deski EOL
• Benefits:
- As usual the less Objects you migrate the faster and
cheaper the migration will be.
- Migrate universes, documents and security. Test them and compare them
with the source BO deployment.
![Page 36: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/36.jpg)
Save daily administration time
Security implementation made
easyDocument everything
Keep control over your deployment
Earn efficiency and keep working on high
value added tasks
Succeed in your migration project
Benefits
![Page 37: 360view Business Objects Xi3.x New Security Concepts](https://reader033.vdocuments.us/reader033/viewer/2022061121/546e7fd5af795980298b570a/html5/thumbnails/37.jpg)
Contact
See our solutions in action on
www.youtube.com/360suite
Ask for a FREE TRIAL!
Sébastien GOIFFON+1 (347) 767 6836
EASIER. FASTER. CHEAPER. SAFER.www.gbandsmith.com