Add IBM Controller Users to the IBM Controller Roles

Users, groups, and roles are created for authentication purposes. In IBM® Controller, you can use users, groups, and roles created in other authentication providers, and groups and roles created in IBM Controller. The IBM Controller groups and roles created in IBM Controller are referred to as IBM Controller groups and IBM Controller roles.

When you use the IBM Cognos authentication method, you must add IBM Controller administrators and users to the IBM Cognos roles.

About this task

Perform the steps in this task on the IBM Cognos Analytics server.

Procedure

  1. Launch IBM Cognos Administration.
  2. On the Security tab, click Users, Groups, and Roles.
  3. Click the Cognos namespace.
  4. Create two new IBM Cognos roles named Controller Administrators and Controller Users.
  5. Once the roles are created, in the Actions column, click the properties button for the Controller Administrators role.
  6. Click the Members tab.
  7. To add members, click Add and do one of the following to select members:
    • To choose from listed entries, click the appropriate namespace, and then select the check boxes next to the users, groups, or roles.
    • To search for entries, click Search and in the Search string box, type the phrase you want to search for. For search options, click Edit > Find, and click the entry you want.
    • To type the name of entries you want to add, click Type and type the names of groups, roles, or users using the following format, where a semicolon (;) separates each entry:

      namespace/group_name;namespace/role_name;namespace/user_name;

      For example: Cognos/Authors;LDAP/scarter;

  8. Click the right-arrow button and when the entries you want appear in the Selected entries box, click OK.
  9. On the Members tab, click the Everyone namespace, and then click Remove.
  10. Click OK.
  11. Close the Properties window to return to the Users, Groups, Roles tab.
  12. Repeat steps 4 to 8 for the Controller Users role.

    Tip: The Controller Administrators role must be a member of the Controller Users role.

  13. Click OK.

Results

After the users are added to the roles, the first user to log on to Controller is automatically mapped to the Controller Administrative User account and inherits the privileges of that account.