Skip to main content
Announcements
Have questions about Qlik Connect? Join us live on April 10th, at 11 AM ET: SIGN UP NOW
cancel
Showing results for 
Search instead for 
Did you mean: 
Not applicable

Limit the number of documents a specific user can see in accesspoint

Hi,

How can I limit the number of documents a specific person can see?

for example there are 5 documents in the accesspoint and User 1 is only entitled to see Document 1,2 and 3. How can I limit User1 to only see document 1,2 and 3?

Thanks!

6 Replies
Miguel_Angel_Baeyens

Hi,

Perhaps the most logic option is to grant each user with NTFS permissions over his or her files only. AccessPoint checks that the user has permissions and displays only those in which ACL the user is in.

You can use section access in each document as well, and in the Settings menu, Document Properties, Server, click on the "Filter AccessPoint Document List...". Anyway this requires to add a new table.

Hope that helps.

Miguel

amien
Specialist
Specialist

Miguel,

"Filter AccessPoint Document List.."  .. if this is checked .. and if it's not working .. what can it be? Section access itself works fine.

Miguel_Angel_Baeyens

Hi Amien,

That could happen because some of the following (I may be missing something, though):

  • The document is the result of a reduced distribution from a greater file that has Section Access
  • NTNAME and USERID and PASSWORD are both in Section Access
  • Section Access has an "*" within
  • Document Authorization grants permissions to more users than those in the Section Access

In all these cases, Section Access is working as expected, meaning that if any of the above is true, section access table will keep all rows, not only those corresponding reduced users. So although the document is being filtered, all users have access to it.

Is there any chance that any of the above is happening?

Hope that helps.

Miguel

amien
Specialist
Specialist

Thanks for your reply Miguel,

Let's check if i see this correct.

The situation is quite normal. AD manages the folder security. Section access is coming from a file, based on NT Names. Plus, there are 2 users concatenated to the section access based on USERID/PASSWORD. This is my escape if i can't login for some reason. Normal users (WINNT) have a * at USERID/PASSWORD. super users have a * at WINNT.

are now the last 3 criterias filled?

if this is true, the checkbox is really less powerfull as i thought.

Miguel_Angel_Baeyens

Hi Amien,

A question first: are you using Publisher? Anyway, the answer is yes. The way QlikView seems to deal with the "*" in section access drives to these situation: a full copy of the section access table is kept in memory so the reduction never takes places as expected (meaning all documents keep the whole table, so as long as all users are in section access, everyone is able to see the document, although when opening, the user has no associated records and is not granted access).

Unfortunately, I cannot give you more detailed technical information. Let's see if Stefan Bäckstrand or someone from R&D can give you further insights.

It would be a good idea to open a support case to confirm that this is the expected behavior.

Hope that helps.

Miguel

amien
Specialist
Specialist

Thanks for your reply

i will make a support call for this..

not using publisher