Previous Topic: Prerequisites to Enabling ReportingNext Topic: Enable SSO Reporting

Administration GuideReportingHow to Enable Reporting for Tenant AdministratorsEnable Advanced Authentication Reporting

Enable Advanced Authentication Reporting

This section describes the pre-configuration steps for required for enabling Advanced Authentication reports tasks.

Configure the Database for Advanced Authentication Reporting

  1. Install the Oracle client on the Report Server.
  2. Add the advanced authentication database details to the tnsnames.ora file.
  3. Change directory to JBoss/server/all/deploy/iam_im.ear/user-console.war/reports.
  4. Copy cam-aa-oracle-postgresql-reports.biar to the im_admin_tools_dir/ReportServerTools folder.
  5. Copy the sample XML from /opt/reports to im_admin_tools_dir/ReportServerTools folder
  6. Edit the values in XML file, which are marked in italics in the following example: 
    username>please specify the Arcot DB User</username>
            <password>please specify the Arcot DB User Password</password>
            <datasource>please specify the Alias name</datasource>
            <server>please specify the DB server:1521</server>
            <jdbcurl>jdbc:oracle:thin:@please specify the DB server:1521:please specify the Alias name</jdbcurl>
  7. Run the BIconfig utility on AA Oracle sample.xml or AA postgres sample.xml to export cam-aa-oracle-postgresql-reports.biar into the Report Server. Use this command format: 
    ./biconfig.sh -h "hostname" -u "administrator_name" -p "administrator_password" -f "<AA Oracle/Postgres Sample>.xml"

Enable the Advanced Authentication Roles

  1. Log in to the User Console as the CSP administrator.
  2. Select Roles and Tasks, Admin Roles, Enable/Disable Admin Role.
  3. Select the check box to enable the Advanced Authentication Manager role.
  4. Select the check box to enable the Advanced Authentication Reports User role.
  5. Click Select.
  6. Click Yes to confirm.

    The system enables the Advanced Authentication Manager and the Advanced Authentication Reports User roles.

Give Tenant Administrators the ability to use Advanced Authentication Reports

  1. Log in to the User Console as the CSP administrator.
  2. Select Roles and Tasks, Admin Roles, Modify Admin Role.
  3. Select Advanced Authentication Reports User role and click Select button.
  4. On the Members tab, under member policies, click Add.
    1. Select this option: who are members of <role-rule> as the Member Rule
    2. Select Admin Role.
    3. Click Browse to select Tenant Administrator role.
    4. Click Okay.
  5. Click Submit.

Now the tenant administrator can request advanced authentication reports in the User Console.