Configuring Authenticated Access

IBM® Controller uses three methods of logon authenticated : native, IBM Controller, Microsoft Windows Active Directory authentication.

We recommend that you use a higher level of security than the default native authentication settings. If you want to use the IBM Controller authentication method, you must use a Controller namespace for authentication.

The first step for setting up IBM Controller or Windows authentication is to configure the IBM Controller components with an authentication namespace for the type of authentication provider you want to use. Unless you want to change authentication providers, you do not have to configure an authentication namespace now. For information about configuring a namespace for various other authentication providers, see Configuring IBM Cognos Components to Use an Authentication Namespace.

If you want to use the IBM Controller authentication method, you must add the IBM Controller users to the IBM Controller roles. After you add the users to the roles, the first user to log on to Controller is automatically mapped to the Controller Administrative User account and inherits the privileges of that account.

For both the IBM Controller and the Windows authentication methods, you must map the users that are defined in IBM Controller to the users in the selected authentication method.