Hi All
I am trying to understand security and I have been doing some testing and I am confused about something.
If I understand our configuration correctly, here is what I think I know.
1. We use AD to authenticate users.
2. We have also have all Cognos users in a AD group called (CognosUsers)
3. We assign CognosUsers group to the Reader, Data Manager Authors, Controller Users roles.
4. We have created Portal Pages and assign users and groups to the appropriate Portal Page.
The user I have been testing with can logon to Cognos, but can not see any content. (this is what I expected because he is not a member of the CognosUsers Group)
Here is my question. Why can my user even get into Cognos at all? Is it because he is in AD? How can I prevent nonusers from logging on?
Thanks
Craig
There's a configuration setting in Cognos Configuration for the Content Manager server:
In security section, there's an option "Restrict users to built-in namespace:" set that to true, restart servcies