Dear all,
we are doing our first steps with Business Objects and setting up an environment from scratch.
With reading the manual this task is not that easy…
What we want to do first, is to set up a group for users who should only be able to read and refresh WebI or Crystal reports.
We created a group and assigned one user. But what are the next steps? 
Sam
sam_bozzler (BOB member since 2011-09-22)
Hi Sam,
Welcome to B 
B!
Firstly, to get the most from your investment I would suggest some official training.
Secondly, theres a nice presentation and materials from Michael, with regards to security here:-
https://bobj-board.org/t/119849
Cheers,
Mark.
Mak 1 
(BOB member since 2005-01-06)
We are working on 4.0. and doing really our first steps on a test environment.
When I set up my group “sales” and I insert “user1”, user1 is automatically in the group “everybody” so he can logon to BI Launch pad.
How do I give him access to a folder?
sam_bozzler (BOB member since 2011-09-22)
Hum,
i can try to help :
Let’s try :
In the CMC
Go to Access levels
Create an access level “sales reader”
Right click on it and select “Included rights”
Click “Add/remove rights”
In the left panel select Content/WebI
Check the options you want (to be able to access wbeI docs)
Do the same for Content/Crystal (to be able to access crystal docs), Sytem/Connection (to be able to access data) and System/Universe (to be able to access universes)
Still in the CMC go to folders
Right click on the folder you want and select “User Security”
Click Add users/groups
Select your group and click “add and affect security”
Select the good access level and click OK
Still in the CMC go to universes
Right click on the universe folder you want (where your universe is) and select “User Security”
Click Add users/groups
Select your group and click “add and affect security”
Select the good access level and click OK
jcmilhot 
(BOB member since 2010-04-09)
Hi,
seems to be the same in 4.0.
But… do I have to apply another right to see folders?
I followed the instructions but my User cant see folders in InfoView (Now: BI Launch Pad)
sam_bozzler (BOB member since 2011-09-22)
Could you tell me more about :
Everyone’s access levele on InfoView App :
In the CMC go to --> Application --> Infoview (or BI Launch Pad) --> right click --> user security
Everyone’s access level on top folder :
In the CMC go to --> Folders --> Manage --> top level security --> All folders
Everyone’s access level on root folder :
In the CMC go to --> Folders --> right on root folder --> user security
jcmilhot (BOB member since 2010-04-09)
Find my answers below.
Everyone’s access levele on InfoView App :
In the CMC go to --> Application --> Infoview (or BI Launch Pad) --> right click --> user security
A: View
Everyone’s access level on top folder :
In the CMC go to --> Folders --> Manage --> top level security --> All folders
A: I get a menue “You have choosen to set top level security”
Everyone: General->Delete Objects->Denied
Everyone’s access level on root folder :
In the CMC go to --> Folders --> right on root folder --> user security
A: At Root folder I do not see “user security” in the right mouse menue.
On any folder on user security “Everyone” has no security assigned.
sam_bozzler (BOB member since 2011-09-22)
PS: wenn I right click on root folder, choose Properties->user security everyone has General->Delete Objects->Denied
sam_bozzler (BOB member since 2011-09-22)
To be honest Sam, as I stated before you are:-
a) Going to have a hard job doing this without training, as little is written about the new security model and you are totally new to Business Objects.
b) Have trouble with someone helping you here, as most are not using 4.0 yet and things always change between versions.
Mak 1 (BOB member since 2005-01-06)
–> May be it’s not root folder but public folder
A: At Root folder I do not see “user security” in the right mouse menue. --> click on Properties and you will find “user security” in the new window
jcmilhot (BOB member since 2010-04-09)
Public Folder->Right Click->Properties->user security->everyone has General->Delete Objects->Denied
sam_bozzler (BOB member since 2011-09-22)
Just added my group here, and now it works!
Thank you very much for your help.
Now we can proceed.
sam_bozzler (BOB member since 2011-09-22)
Cool 
jcmilhot (BOB member since 2010-04-09)