What is the difference between Row Level Security and RPD security?
- by Jeffrey McDaniel
Row level security (RLS) is a feature of Oracle Enterprise Edition database. RLS enforces security policies on the database level.
This means any query executed against the database will respect the specific security applied through these policies.
For P6 Reporting Database, these policies are applied during the ETL process. This gives database users the ability to access data with security enforcement even outside of the
Oracle Business Intelligence application. RLS is a new feature of P6 Reporting Database starting in version 3.0.
This allows for maximum security enforcement outside of the ETL and inside of Oracle Business Intelligence (Analysis and Dashboards).
Policies are defined against the STAR tables based on Primavera Project and Resource security. RLS is the security method of Oracle Enterprise Edition customers. See previous blogs and P6 Reporting Database Installation and Configuration guide for more on security specifics.
To allow the use of Oracle Standard Edition database for those with a small database (as defined in the P6 Reporting Database Sizing and Planning guide) an RPD with non-RLS is also available.
RPD security is enforced by adding specific criteria to the physical and business layers of the RPD for those tables that contain projects and resources, and those fields that are cost fields
vs. non cost fields. With the RPD security method Oracle Business Intelligence enforces security. RLS security is the default security method.
Additional steps are required at installation and ETL run time for those Oracle Standard Edition customers who use RPD security.
The RPD method of security enforcement existed from P6 Reporting Database 2.0/P6 Analytics 1.0 up until RLS became available in P6 Reporting Database 3.0\P6 Analytics 2.0.