Home Discussions Questions & Answers VPD Implementation Steps and Security Scope

VPD Implementation Steps and Security Scope

Avatar photoCustomer September 28, 2019 at 9:15 pm

We need to implement a column-level restriction on sensitive salary data using Oracle Virtual Private Database (VPD) when users run reports through Blitz Report. What is the precise configuration process in EBS to enable this?

Viewing 6 reply threads
  • Author
    Replies
    • Support September 30, 2019 at 2:17 am  

      To implement VPD with Blitz Report, you must first define which tables or columns need securing . You configure this via the lookup `XXEN_REPORT_VPD_POLICY_TABLES` . Navigate to Application Developer > Application > Lookups > Application Object Library, query the lookup, and define an entry for each table or column, specifying the owner, table name, and the column name if needed . After setup, you typically run a concurrent program to activate the underlying database policies.

    • Avatar photoCustomer October 1, 2019 at 10:50 am  

      What is the key limitation I need to communicate to my DBA team regarding VPD implementation via this method?

    • Support October 2, 2019 at 1:31 pm  

      The key limitation is that using the Blitz Report method to secure data with VPD only enforces restrictions when data is accessed through the Blitz Report concurrent program itself . It explicitly does not secure data access if users try to run direct queries using database access tools like SQL Developer or Toad . This is crucial for managing security expectations.

    • Avatar photoCustomer October 3, 2019 at 5:50 pm  

      Does Blitz Report provide a tool to manage the VPD policy rules themselves, or is that strictly an Oracle DBA task?

    • Support October 4, 2019 at 4:59 pm  

      The definition of which tables/columns are subject to VPD is managed within the Blitz Report lookup `XXEN_REPORT_VPD_POLICY_TABLES` . The activation of the policy is handled through a corresponding concurrent program, likely named ‘Blitz Report Update VPD Policies’ (based on context), which leverages the lookup configuration to apply the underlying database policy definitions . The complexity of the actual policy logic may still involve DBA input.

    • Avatar photoCustomer October 5, 2019 at 4:57 pm  

      If a user has a specific VPD policy rule that applies to them, is there a way to track what that rule is within the Blitz Report setup?

    • Support October 5, 2019 at 8:16 pm  

      The profile option ‘Blitz Report VPD Policy Rule’ can be used for tracking or potentially setting up access related to sensitive data protected through Blitz Report VPD policies . However, the documentation does not detail the exact reporting mechanisms available within Blitz Report itself to display the active VPD policy SQL applied to a user’s session .

  • Author
    Replies
Viewing 6 reply threads
  • You must be logged in to reply to this post.

Login with:
Popular Posts
How to track master data changes using Oracle EBS Audit function and Blitz Report™ 123802

Oracle Enterprise Command Center Framework Release 12.2 installation and integration with Oracle EBS 12.2.8 19937

Oracle Discoverer replacement – importing worksheets into Blitz Report™ 14674

How to check if a patch is applied in Oracle EBS 12.2 14435

Oracle Discoverer 11.1.1.7 installation and integration with Oracle EBS R12.1.3 14122

Oracle E-Business Suite 12.2.8 upgrade to version 12.2.9 11998

Oracle E-Business Suite 12.2.7 upgrade to version 12.2.8 9943

Migration to Java Web Start in Oracle EBS 12.2 instance 9937

Securing sensitive data with Oracle VPD 7863

EBS 12.1.3 BI Publisher Excel templates generate XLS instead of XLSX and limit row number to 65,536 6486

Blog Archive
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
Recent Events
2026
2025
2024
2023
2022
2021
2020
2019
2018