cancel
Showing results for 
Search instead for 
Did you mean: 

Security considerations for universe-based vs. BEx-query-based Webi reports

pstecker
Explorer
0 Kudos

We have SAP BIP 4.2 SP04. Currently we only implement Webi reports against BW data based on BEx queries and connecting via OLAP connection that uses SSO credentials. End-users aren't allowed to create or edit any reports. They can only access relevant folders, and refresh for data that is allowed per SAP BW role, and then export results if desired. If we want to implement reports based on universes that point to other non-SAP sources (eg, SQL Server database) and connecting via SSO, with users still aren't allowed any create/edit rights, are there additional security issues that we should consider? We are used to dealing systems that implement one type of data provider or the other (ie, universe or BEx queries), but not in combination like this so would like to understand the challenges. Many thanks in advance for your thoughts/ideas.

Accepted Solutions (0)

Answers (1)

Answers (1)

VenkateswaraGY
Product and Topic Expert
Product and Topic Expert
0 Kudos

One point I would like you to think off in this aspect at this moment is, as you mentioned that, with the BEx queries, the users are restricted for the end results based on their SAP BW role, similarly while implementing the reports based on universe you might need to consider the row level security at universe level https://blogs.sap.com/2014/07/03/implementing-row-level-security-in-idt-using-data-security-profile/

Thanks,

Venkat

pstecker
Explorer
0 Kudos

Thank you for the link to the blog, Venkat. We did have row-level security in mind as well. Much appreciated for your prompt respond.

Phuong