apart from object level security ( reports,folders,package), how the admins are providing access to a user say report studio alone
( i mean that the user should have access to only report studio) ..
Basically through capabilities menu (Security --> Capabilities) You can tweak almost any part of Cognos connection, for instance actively denying access to any other studio than Report Studio.
If they only need to run existing reports, then having sufficient rights on Cognos viewer would be enough
Cognos standard roles already have capabilities pre-set
Quote from: blom0344 on 27 Dec 2011 06:57:49 AM
Basically through capabilities menu (Security --> Capabilities) You can tweak almost any part of Cognos connection, for instance actively denying access to any other studio than Report Studio.
If they only need to run existing reports, then having sufficient rights on Cognos viewer would be enough
Cognos standard roles already have capabilities pre-set
thanks for ur time..
could u please elobrate more.. in capabilities what should I do to provide access to a user?
1. The triangle to the right of the Report Studio capability,
choose Set Properties and click the Permissions tab.
2.From the Set properties - Report Studio page, add the ReportStudioAccess
group and grant the permissions (Read, Write, Execute and Transverse)
Is it enough?
Regards,
venky
Did you check permissions on Cognos viewer? Basically it is a matter of signing on with an account from the group you mention and testing whether the settings meet your requirement..
yeah I tried..
but Something I am missing which is not making to achieve security.. actually im trying to secure one folder giving access to one user and to hide from another user..
I am using NTLM active directory and everything with new setup of installation.. having two users cg,cg1
in a public folder , i have a new directory which has two reports..
I denied all the permissions of the directory for the second user cg1(using 1st user cg) I also removed directory administrator role for the user cg1 and disabled everyone user role...
but still I can traverse ,open the report and run it using the second user ID.. :(
Am I in the right way to go?
Did you try to refresh the credentials for the specific user?
Quote from: blom0344 on 02 Jan 2012 04:01:20 AM
Did you try to refresh the credentials for the specific user?
U mean changing password for the user?? nope.. i didnt try anything as what u say.. does it has effect?
thanks in advance
venky
Quote from: venkys4u_ on 03 Jan 2012 05:33:40 AM
U mean changing password for the user?? nope.. i didnt try anything as what u say.. does it has effect?
thanks in advance
venky
No, I am not refering to changing passwords:
My preferences --> tab Personal --> Renew Credentials
Hi ,
Finally I fixed it.. Looked for the roles and groups of the second user.. It had many groups including administrator group like by default..
just removed them
Thanks for ur time
venky