Access permissions and credentials
For more information about setting access permissions, see the IBM Cognos Administration and Security Guide.
For users of IBM Cognos for Microsoft Office, specific permissions must be granted for the following types of activities:
- Retrieving data from the content store to create reports and viewing reports in IBM Cognos Viewer. For more information, see Permissions for viewing and importing reports.
- Refreshing data or folders, and viewing contents of packages or folders. For more information, see Permissions for viewing or editing the contents of a package or a folder.
- Downloading Microsoft Office documents from and publishing Microsoft Office documents to IBM Cognos Connection. For more information, see Permissions for accessing IBM Cognos Connection.
Access permissions for users
At minimum, users must have traverse and read permissions for the parent entries of the entries in IBM Cognos Connection that they want to access. The parent entries include container objects such as folders, packages, groups, roles, and namespaces.
Note: If the administrator has granted users or the group to which users belong execute and traverse permissions on the package, they can run reports from a package, but not open the package in an IBM Cognos studio.
Access to IBM Cognos Connection entries associated with data sources secured against multiple namespaces
Data sources in IBM Cognos software can be secured against multiple namespaces. In some environments, the namespace used to secure the data source is not the primary namespace used for access to IBM Cognos Connection. When users try to access an entry that is associated with a data source secured against multiple namespaces, they must be logged on to all of the required namespaces.
When single signon (SSO) is enabled, users are automatically logged on to the namespace.
This functionality applies to IBM Cognos Viewer only.