COGNOiSe.com - The IBM Cognos Community

Hi,

I have a value prompt which is assigned data item is param name and this is having the data is Local Admin and Global admin. I have list of people for local and global admins.i need to set security at report level for local and global. I have followed in the query in filter section:
[Param name]=#sq ($account.parameters.ibmserialnumber)#

if local admin run the report he can able to see only local admin comments like wise global admin. while applying the above condition am not able to param names. Any suggestion from experts.

Thanks,
Priya

what is your data source? i think it is better to put the security at data level, it will be much easier (if possible).

DB2. can you brief how to do at report level

Hello,

Any help/suggestions and i tried with session parameters but it's not working.

Thanks,

Quote from: priya@90 on 12 Sep 2016 08:30:03 AM
Hello,

Any help/suggestions and i tried with session parameters but it's not working.

Thanks,

Hello,

Your method is correct for applying report-level security. Obviously there's an issue with your parameters, so let's troubleshoot that first.

1. Create a new query, with two data items.
2. The first data item contains [Param name] (I assume this is a data item from the model? is it coming from DB?)
3. The second data item contains #sq ($account.parameters.ibmserialnumber)#

Log in as local admin and run the tabular data. What do you see? Can you provide us with the results?

Hi Jay,

thanks for your suggestion but here i have list of people for Local Admin and Global admin, where do i add them? iam not adding them anywhere so how it will work logically. If iam wrong please correct me

Local Admin:      Global Admin:   if global admin run the report, he should be able see both the data but local admin can see only local admin data
-------------     -------------
X                     A
Y                     B
Z                     C
etc                   D

Thanks,

Are Local Admin and Global admin security groups that are defined somewhere (Cognos, Active Directory, LDAP)? If so, you can use functions like CSVIdentityNameList()...

You can optionally create a security table in your database and use that table in your model.

There are many ways of setting up security, it just depends on what's best for your organization.

Hi,

Local Admin and GA are not security groups, those are coming from DB..i.e. Parm_name(this data item contains both) i have used in my value prompt and i have couple of users those are under cognos consumer group, it's not separated for LA and GA. i have to separate for based on selection in prompt.

Thanks,