Allowing Processes to Modify Security Data
The TM1®
Security Access option controls whether a process
is allowed to modify security data in the script of the process. Only
members of the ADMIN and SecurityAdmin groups are allowed to set this
option. This option is set on a process-by-process basis from the Process menu
in Server Explorer.
When the Security Access option is enabled for a process:
- Members of the DataAdmin group are not allowed to edit the process since it may contain scripts that could modify TM1 security.
- Only members in the full ADMIN group can edit a process after the Security Access option has been enabled.
- Members of the SecurityAdmin group can view processes and turn this option on and off, but are never allowed to edit the contents of a process.
- The View option on the Process menu becomes available to allow users in the DataAdmin and SecurityAdmin groups to view processes in read-only mode.
For more details about the ADMIN, SecurityAdmin and DataAdmin groups, see the IBM® Cognos® TM1 Operation Guide.