Roles and Capabilities in Cognos.

[tushar.patil49]

Without using the default roles, what permissions are required such that an user is able to modify access to the capability via this screen. ie create a new role, add a user to this role, and then grant various permissions to this role and what is the minimum permissions required for that role so that the user can control the access of other users to Report Studio.
Note: We don't want to use default roles here.

[simon.hodgkiss]

Shame you can't use default roles - a Directory Administrator should be able to do all of this.

If I've understood correctly you'll need to create a role which has very similar (if not the same) permissions the Directory Admin then.  So 'Set Policy' on all Secured Features and Functions in "Capabilities" section under "Security", as well as Read, Execute and traverse for some.  Also the same on the User Interface Profiles.

As you need to add the role to all capabilities anyway for Set policy, go through the various Secured features and functions and match the security to Directory Admins (for Read, Exe, Traverse).  Saves me writing a long list here... :-)

The description of the request may have been a little vague.  The steps I've outlined above will end up creating a very powerful role in your environment, able to edit membership of roles such as System Administrator, or permissions on capablities etc.  be sure that this is what's intended!