I’m currently setting up our 6.5.1 security in XI3.1 from scratch, I am playing around with how I can get the same security for our users.
We have a basic setup where generally Group A accesses Folder A reports and Group B accesses Folder B reports, but for the cross over reports that need to be in multiple groups, I have been giving the reports it’s ‘logical’ home in a single folder, then I have been creating categories for each group and granting access to the specific reports that needs to used from the other folder.
This is working okay, but then I found that you can create a shortcut for a document in another folder, then this short cut inherits the security from the folder that it’s in, great I thought this will save time, plus it will ensure that there is only ever one instance of the report in one folder.
But I am not able to view these shortcut’s when I try to retrieve them in Deski, I updated the ‘content’ access rights that the group has on the folder to have allow all available rights under the collection;
content —> shortcut
But I still can not see the shortcut’s under the groups folder, what am I missing ???
thanks indeed for mentioning the fact that shortcuts can not be used with Deski.
I have however also a problem in using shortcuts within webi.
(We’re using BO Enterprise XI 3.2 fixpack 2.3).
The user can indeed see the shortcut, this shortcut points to a webi document that is in a folder this user has no rights to.
However although the user can see the shortcut, he can not issue a view command on this shortcut (eventhough the user has universe access and conncection rights to allow for refreshing the document).
Any idea what I’m missing in the config of my access profiles?
But you only need rights on the target or the folder that it resides in, you do not need rights on the entire folder structure that leads to the target. If you want to hide where the report actually lives then you can deny View on the parent folders and grant View on the folder where the report actually resides.
However, I’m a bit disapointed with the answer.
The BO manual was very promissing by saying that you could give visibility to reports through shortcuts.
However the manual fails to mention that you indeed need permissions to view the report in the first place.
So, as we are providing rights through the folder a document is in, the user needs rights to the particular folder the report is in.
This leads indeed to the conclusion that you can only hide the path towards a document, but that no matter what, the user needs rights on the document itself.
I feel this cancels out the benefit of the shortcuts. I can as wel make a folder to store all the docs all users needs to see and give the appropriate rights to that folder.
Create a first folder called ‘shortcuts documents’ and give no access to that folder for the Everyone group and full control for the admins
Then create a sub folder called ‘view sortcuts documents’ and give give view on demand to that folder for the Everyone group
Publish all the documents within that sub folder.
Manage the security on shortcuts and it will work like a charm …
(BOB member since 2006-05-17)
(BOB member since 2003-02-13)
(BOB member since 2008-07-11)