Set Access Permissions for an Entry

Setting access permissions for an entry includes creating new permissions or updating existing permissions. You can specify access permissions for all entries in IBM Cognos 8. Some examples of such entries are reports, queries, analyses, packages, agents, metrics, namespaces, groups, users, or dispatchers. You can reference entries from different namespaces.

To administer security, you must have set policy permissions.

Steps

1. In IBM Cognos Connection, locate the entry for which you want to set access permissions.

2. In the Actions column, click the set properties button  for the entry.

3. In the Set properties page, click the Permissions tab.

4. Choose whether to use the permissions of the parent entry or specify permissions specifically for the entry:

   • To use the permissions of the parent entry, clear the Override the access permissions acquired from the parent entry check box, then click OK if you are prompted to use the parent permissions. Click OK.

   • To set access permissions for the entry, select the Override the access permissions acquired from the parent entry check box, then proceed to step 5.

5. If you want to remove an entry from the list, select its check box and click Remove.

   Tip: If you want to select all entries, select the check box at the top of the list in the upper-left corner. Clear the check box to deselect all entries.

6. To specify the entries for which you want to grant or deny access, click Add, then choose how to select entries:

   • To choose from listed entries, click the appropriate namespace, and then select the check boxes next to the users, groups, or roles.

   • To search for entries, click Search and in the Search string box, type the phrase you want to search for. For search options, click Edit. Find and click the entry you want.

   • To type the name of entries you want to add, click Type and type the names of groups, roles, or users using the following format, where a semicolon (;) separates each entry:

     namespace/group_name;namespace/role_name;namespace/user_name;

     Here is an example:

     Cognos/Authors;LDAP/scarter;

7. Click the right-arrow button and when the entries you want appear in the Selected entries box, click OK.

   Tips: To remove entries from the Selected entries list, select them and click Remove. To select all entries in a list, click the check box in the upper-left corner of the list. To make the user entries visible, click Show users in the list.

8. For each entry in the list, in the box next to the list, select or clear check boxes to specify what type of access you want to grant or deny.

9. Click Apply.

   In the Permissions column, an icon appears next to the user, group, or role. This icon represents the type of access granted or denied to the entry.

10. If you want to replace the existing permissions of the child entries with the permissions you set for this entry, in the Option section, select the Delete the access permissions of all child entries check box.

    This option appears only with the entries that are containers. You can use it to restrict access to a hierarchy of entries.

11. Click OK.