BI User Restriction

The BI User Restriction (BIUSRRST) page is an inquiry page for the Integrated security roles user data and the Foreign user restriction data for the Business Intelligence (BI) tables.

Below are some of the key points about BI User Restriction:

  • The BI Row Level Security data is available on the BI User Restriction page.

  • The Row Level Security data has different restriction types, that is Home and Foreign.

  • The Restriction type of Home records are pulled from the User Creation pages.

  • The Restriction type of Foreign records are pulled from the BI Foreign Restriction (BIFGNRST) page.

  • If the Active flag is set to True for the User, Department, and Unit combination of records, then the user can access that combination of records from the BI tables.

  • Appl ID indicates the application(s) the user is allowed to access. The Appl ID is either: FIN (Financial), HR (HRM), or ALL (Both Financial and HRM).

  • If the Transaction Access check box is set to true (checked) and the user has a security role with the Integration flag enabled on the Security Role (SCROLE) page, then the user will be able to access transactions for the given Department and Unit. The BI_TRANSACTION_ACCESS parameter on the Application Parameter (APPCTRL) table determines the default value for the Transaction Access check box when a new user restriction record is created. If the parameter is set to True, then the check box is selected, by default. Sites that need to disable transaction access for a given security role/user, need to uncheck this flag. If the parameter is False, then the check box is not selected, by default when a new user restriction record is created.

  • For Foreign records, the Appl ID can be FIN or HR. If both FIN and HR application access is given for a user for a particular department and unit code, then there will be 2 separate records for FIN and HR Appl ID.

  • For Home records, the Appl ID can be FIN, HR, or ALL for a user.

  • A user can access multiple Department and Unit combination of records from the BI tables, such as the Foreign Organization Security setup.

Below are some of the key points to create BI User Restriction data with Restriction Type set to Home.

  • Create or modify a Security Role record from the Security Role (SCROLE) page with the Integration flag checked.  Assign the Integrated Security Role to a user(s) from one of the User Creation pages (such as SCUSER, UDOC, HRDOC, SCNDIR, SCCLON and so forth).

  • The existing BI User Restriction record will be updated, if the user’s Home Department or Home Unit or both are updated from the User Information page.

  • The BI User Restriction record will be deleted, if the Integrated Security Role for a user is removed.