If you are unable to create a new account, please email support@bspsoftware.com

 

News:

MetaManager - Administrative Tools for IBM Cognos
Pricing starting at $2,100
Download Now    Learn More

Main Menu

Data secuirty issue

Started by cognosbi, 16 Aug 2010 02:59:52 PM

Previous topic - Next topic

cognosbi

Gurus,

I have a column called VLD_FLG in few tables.
I want to implement data security on these tables where I have these flags.

If the FLG is Yes then I want a certain groups to see that data row. If the FLG is No then I want all the groups to see the data.

I have a security table in the db, where we have all the user groups added along with the ID's.

ID      User Group
===   =========

1        Managers
2        Reps
3        Staff

When the VLD_FLG is Yes, want to provide access ONLY to the manager group. If the valid flag is No want to provide access to all the three groups.

How to implement this?

Thanks in advance.


Heba_elfaid


do you have the same groups and users assigned to them in your authentication provider?

cognosbi

Thanks Heba for your response.

In Cognos Connection Adminstration, we have the user groups created. And we have added the users in that group.

We are also having the secuirty table as a query subject in the FM model.

And we are filtering this security table with this filter:

[Mid-Layer].[Secuirty].[User Group] in (#csv(array(CAMIDListForType('group')))#)

This gives us all the groups which match in the table and that what's in the 'Cognos' namespace under Secuirty in Administration.

Now, out of these matched groups, I want to make sure the Manager group has the visibility to all the data in those 5 tables and we want all other groups to see only the data where the VLD_FLG ='N' .

If we add the data security it is asking to select from the Cognos secuirty namespace. And looks like it bypasses the security table/quey subject.

We are missing something here.

Thanks.