Text only | Text with Images

COGNOiSe.com - The IBM Cognos Community

IBM Cognos Analytics Platform => Cognos Analytics => Administration and Security => Topic started by: progmomen on 13 Mar 2023 11:39:49 AM

Title: Hiding folders based on certain users
Post by: progmomen on 13 Mar 2023 11:39:49 AM
Dear all,

I want to control access to certain hidden folders based on which user is logged in like:
Dir1, Dir2 on the same path
user x, user y
"x" can only see Dir1, "y" can only see Dir2

Is there a way to do that ?
Title: Re: Hiding folders based on certain users
Post by: progmomen on 13 Mar 2023 11:56:22 AM
Oh I figured it out, by giving "Deny" permission "Read & Traverse" to that user, he is no longer can see that folder.

Thx anyway
Title: Re: Hiding folders based on certain users
Post by: MFGF on 13 Mar 2023 11:59:34 AM
Quote from: progmomen on 13 Mar 2023 11:39:49 AM
Dear all,

I want to control access to certain hidden folders based on which user is logged in like:
Dir1, Dir2 on the same path
user x, user y
"x" can only see Dir1, "y" can only see Dir2

Is there a way to do that ?

Hi,

Yes, you can do this easily. For each folder, go into the Properties of the folder and on to the Permissions tab. Check the box to Override parent permissions, then add/remove the relevant users and groups into/out of the list. If a user/group is removed from the list altogether, they will not be able to see/access the folder. Additionally, for users/groups who are permitted access, you can control what level of access they have (Read, Run, Write, Full).

Cheers!

MF.
Title: Re: Hiding folders based on certain users
Post by: MFGF on 13 Mar 2023 12:04:53 PM
Quote from: progmomen on 13 Mar 2023 11:56:22 AM
Oh I figured it out, by giving "Deny" permission "Read & Traverse" to that user, he is no longer can see that folder.

Thx anyway

Hi,

That is one way, but not one I would necessarily use ordinarily. If you are setting privileges based on groups (for example), and Group A is granted access to the folder and Group B is explicitly denied access to the folder (as you are doing here), a user who belongs to both groups will not be able to access the folder, even though they belong to Group A which has access.

The usual way to remove access is simply to take the user/group out of the list on the Permissions page, as detailed in my previous post. In this situation, if Group A is granted access to the folder, and Group B is not (because they are not in the list), a user who belongs to both groups will be able to access the folder by virtue of belonging to Group A. This is normally the approach I would advocate.

Cheers!

MF.
Title: Re: Hiding folders based on certain users
Post by: progmomen on 13 Mar 2023 12:34:39 PM
Quote from: MFGF on 13 Mar 2023 12:04:53 PM
Hi,

That is one way, but not one I would necessarily use ordinarily. If you are setting privileges based on groups (for example), and Group A is granted access to the folder and Group B is explicitly denied access to the folder (as you are doing here), a user who belongs to both groups will not be able to access the folder, even though they belong to Group A which has access.

The usual way to remove access is simply to take the user/group out of the list on the Permissions page, as detailed in my previous post. In this situation, if Group A is granted access to the folder, and Group B is not (because they are not in the list), a user who belongs to both groups will be able to access the folder by virtue of belonging to Group A. This is normally the approach I would advocate.

Cheers!

MF.

You are right your approach is much more practical, thx for your help.
Text only | Text with Images