Configuring security permissions

Increase the security settings for the Common Reporting user permissions. By default, all the users created, including the one specified during the installation process, have full administrative privileges in IBM® Cognos®. You can modify the security permissions in Cognos Administration.

About this task

To learn more about Tivoli® Common Reportingsecurity settings for authorizations, see Authentication and authorization in Tivoli Common Reporting, and Cognos Administration and Security Guide.

In Dashboard Application Services Hub, only those users that are assigned to the Dashboard Application Services Hub tcrPortalOperator role can access the Common Reporting interface within the Dashboard Application Services Hub portlet page, referred to as the Common Reporting portlet. When users are assigned to this role, they also have full Cognos administrative privileges in the reporting interface.

All new users of the Common Reporting portlet are assigned to the Cognos Everyone user group. This user group is a member of the CognosSystem Administrators role by default. To improve security, edit the members of the System Administrators role. You can change the settings for this role in Cognos Administration.

Procedure

  1. Log in to the relevant reporting interface in your environment. See Logging in to the reporting interface.
  2. In the reporting interface, select Launch > Administration.
  3. In the Security tab, select Users, Groups, and Roles in the navigation bar, and click the Cognos namespace.
  4. Use the navigation icons to browse the list and locate System Administrators. Click More > Set propertiesto set the role properties.
    Tip: You might need to go to the last page to locate the System Administrators role.
  5. In the Members tab, click Add to add an individual administrative user.
  6. Add the administrative user of your choice from the VMMProvider namespace, and click OK to save the settings.
    Tip: Select to Show users in the list to be able to see the users. Beginning with Tivoli Common Reporting 2.1.1, the default is not to return all groups and users that require the administrator to use the search function.
  7. Remove the Everyone user group from the System Administrators role by selecting the check box, and clicking Remove.
  8. Click OK to save the new settings.
Parent topic: Configuring Tivoli Common Reporting