原文地址:http://oditraining.blogspot.jp/2012/06/oracle-data-integrator-security.html
Objects, Instances and Methods
An Object is a representation of a design-time or run-time artifact handled through Oracle Data Integrator. For example, agents, models, datastores, scenarios, interfaces and even repositories are objects. Specific objects have a double name (Agent/Context, Profile/Method, and so forth). These objects represent links between objects. These links are also objects. For instance, Agent/Context corresponds to a physical/logical agent association made through the contexts. Privileges on this object enable to change this association in the topology.
An Instance is a particular occurrence of an object. For example, the Datawarehouse project is an instance of the Project object.
A Method is an action that can be performed on an object. Each object has a predefined set of methods.
Note: The notions of object instance and method in Oracle Data Integrator are similar to the concepts used in Object-Oriented Programming.
WARNING:
Although they appear in the Security Navigator, objects and methods are predefined in Oracle Data Integrator and should not be altered.
Profiles
A Profile contains a set of privileges for working with Oracle Data Integrator. One or more profiles can be assigned to a user to grant the sum of these privileges to this user.
A Profile Method is an authorization granted to a profile on a method of an object type. Each granted method allows a user with this profile to perform an action (edit, delete, and so forth) on an instance of an object type (project, model, datastore, and so forth).
Methods granted to a profile appear under this profile in the Profiles accordion of the Security Navigator. When a method does not appear for a given profile, this profile does not have access to this method.
A method can be granted as a generic or non-generic privilege:
A method granted as a generic privilege is granted by default on all the instances of this object.
A method granted as a non-generic privilege is not granted by default on all object instances, but may be granted per instance.
Generic vs. Non-Generic profiles
Generic profiles have the Generic privilege option selected for all object methods. This implies that a user with such a profile is by default authorized for all methods of all instances of an object to which the profile is authorized.
Non-Generic profiles are not by default authorized for all methods on the instances since the Generic privilege option is not selected for all object methods. The administrator must grant the user the rights on the methods for each instance.
If the security administrator wants a user to have the rights on no instance by default, but wishes to grant the rights by instance, the user must be given a non-generic profile.
If the security administrator wants a user to have the rights on all instances of an object type by default, the user must be given a generic profile.
Built-In Profiles
Oracle Data Integrator has some built-in profiles that the security administrator can assign to the users he creates.
Table: Built-In Profiles shows the built-in profiles delivered with Oracle Data Integrator.
Built-In Profiles Profile Name Description
CONNECT
Profile granted with the basic privileges to connect Oracle Data Integrator. It should be granted with another profile.
DESIGNER
Profile granted with privileges to perform development operations. Use this profile for users who will work mainly on projects.
NG_DESIGNER
Non-generic version of the DESIGNER profile.
METADATA_ADMIN
Profile granted with privileges to manage metadata. Use this profile for users that will work mainly on models.
NG_METADATA_ADMIN
Non-generic version of the METATADA_ADMIN profile.
OPERATOR
Profile granted with privileges to manage run-time objects. Use this profile for production users.
REPOSITORY_EXPLORER
Profile granted with privileges to view objects. Use this profile for users who do not need to modify objects.
NG_REPOSITORY_EXPLORER
Non-generic version of the REPOSITORY_EXPLORER profile.
SECURITY_ADMIN
Profile granted with privileges to edit security. Use this profile for security administrators.
TOPOLOGY_ADMIN
Profile granted with privileges to edit the Topology. Use this profile for system or Oracle Data Integrator administrators.
VERSION_ADMIN
Profile granted with privileges to create, restore and edit versions and solutions. Use this profile for project managers, or developers who are entitled to perform version management operations.
NG_VERSION_ADMIN
Non-generic version of the VERSION_ADMIN profile.
相关推荐
### Oracle Data Integrator 12c 新特性解析 Oracle Data Integrator 12c(12.1.2)作为一款先进的数据集成解决方案,引入了一系列革新性功能,旨在提升数据处理效率、增强灵活性以及简化复杂的数据集成流程。以下...
《Oracle Data Integrator (ODI) 对于 Oracle Warehouse Builder (OWB) 开发者的应用解析》 Oracle Data Integrator(ODI)作为Oracle家族中的一员,是为数据集成设计的全面平台,它不仅具备强大的数据抽取、转换及...
### Oracle Data Integrator 技术白皮书知识点详解 #### 一、Oracle Data Integrator (ODI) 体系结构概述 Oracle Data Integrator (ODI) 是一款先进的数据集成平台,其体系结构围绕一个集中式的元数据库构建。该...
Oracle选择了保留和增强自身的SOA产品体系,包括Oracle BPEL Manager、Oracle Service Bus(ALSB)、Oracle Enterprise Service Bus、Oracle Human Workflow、Oracle Rules、Oracle Data Integrator、Oracle ...
- **Oracle Data Integrator (ODI)**:数据集成工具,支持ETL(抽取、转换、加载)过程。 - **Oracle BPEL Process Manager**:基于Business Process Execution Language (BPEL) 的流程引擎。 - **Oracle Mediator**...
3. BI集成工具(BI Integration Tools):例如ODI(Oracle Data Integrator)和OWB(Oracle Warehouse Builder),用于数据抽取、转换和加载。 4. BI应用分析(BI Applications):是预建的分析应用,针对特定行业...
Oracle Data Integrator 的整体架构围绕着主存储库构建,主存储库是ODI的核心组成部分,可以是多种关系数据库管理系统(RDBMS),如 Oracle 或 SQL Server。主存储库包含了ODI的所有系统表,是所有ODI组件的基础。 - ...
随着 Oracle 对数据集成产品线的战略调整,未来的 ODI-EE 将会融合 Oracle Data Integrator 和 Oracle Warehouse Builder Enterprise ETL 的功能,形成一个统一的数据集成技术平台。这一策略将确保所有 Oracle 数据...
**Oracle Data Integrator (ODI)** 是一款由Oracle公司开发的数据集成平台,它由多个核心组件组成,包括图形模块、运行时组件和Web界面,这些组件共同围绕一个集中式的元数据库运作。这一集成平台具备高度的灵活性和...
Oracle Data Integrator工具集成了ETL(提取、转换、加载)功能,提升了数据整合的效率。这对于需要从不同数据源集成数据的.NET和C++应用程序来说,简化了开发流程。 十、数据库即服务 Oracle Database 11g支持...
在Oracle Data Integrator (ODI) 中,连接到各种数据源是数据集成过程中的关键步骤。ODI 提供了强大的连接能力,支持多种数据源,包括SQL Server, Excel, FILE, 和 MySQL。以下是对这些数据源连接配置的详细说明: ...
**ODI**(Oracle Data Integrator)是一款由Oracle推出的高效数据集成工具,其前身是Sunopsis公司在2006年10月被Oracle收购后整合而成的产品。作为Oracle Fusion Middleware的重要组成部分之一,ODI在数据集成领域...
**Oracle Data Integrator (ODI)** 是一款由Oracle公司开发的企业级数据整合工具,主要用于实现不同信息系统或数据库之间的数据传输与转换。相较于传统的ETL(Extract, Transform, Load)工具,ODI采用了独特的ELT...
DNSIX安全属性令牌映射(DNSIX Security Attribute Token Map)提供安全属性到令牌的映射功能。 ### 69. MIT Dover Spooler (端口91) MIT Dover Spooler服务(MIT Dover Spooler Service)提供打印队列管理功能。 ...
### TCP/IP协议端口号及其功能解析 #### 一、引言 在计算机网络通信中,TCP/IP协议族作为互联网... 端口90 - DNSIX Security Attribute Token Map (DNSIX安全属性令牌映射) - **描述**:DNSIX相关的安全属性映射服务。...