https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2023944#M24075 <P>Hi everyone,</P> <P>I need to create a custom administration role, it's a content admin with less privileges that I need.</P> <P>I already spend time on it but it's not working as expected yet...&nbsp;</P> <P>I know that there is probably two security rule that needs to be created, one for app*,Stream* privileges and another one for QMC sections.</P> <P>My need is to give only Apps and Tasks qmc sections, with some privileges</P> <P>on the Apps section I need the admin (which is a user also) to see only the apps that are published on the stream that he has access to, with Export, publish and 'reload now' privileges (I don't think there is a configuration to only remove the create_new_task_button, but it would be great if I can grey this out).</P> <P>On the tasks qmc section, I need the admin to see only the tasks related to the apps that are only published on the streams that he has access to.</P> <P>I figured it out to open qmc section and open privileges, but as soon as I add a condition like this&nbsp;<A href="mailto:user.@custompropertyX=resource.@custompropertyX" target="_blank" rel="noopener">user.@custompropertyX=resource.@custompropertyX</A>&nbsp;to the security rule, the list of apps are restricted correctly BUT the export privilege is greyed out (even with the export and exportdata selected).</P> <P>Can someone help me please ?</P> <P>Thank you</P> <P>Youssef</P> Tue, 10 Jan 2023 17:18:43 GMT YoussefBelloum 2023-01-10T17:18:43Z https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2023944#M24075 <P>Hi everyone,</P> <P>I need to create a custom administration role, it's a content admin with less privileges that I need.</P> <P>I already spend time on it but it's not working as expected yet...&nbsp;</P> <P>I know that there is probably two security rule that needs to be created, one for app*,Stream* privileges and another one for QMC sections.</P> <P>My need is to give only Apps and Tasks qmc sections, with some privileges</P> <P>on the Apps section I need the admin (which is a user also) to see only the apps that are published on the stream that he has access to, with Export, publish and 'reload now' privileges (I don't think there is a configuration to only remove the create_new_task_button, but it would be great if I can grey this out).</P> <P>On the tasks qmc section, I need the admin to see only the tasks related to the apps that are only published on the streams that he has access to.</P> <P>I figured it out to open qmc section and open privileges, but as soon as I add a condition like this&nbsp;<A href="mailto:user.@custompropertyX=resource.@custompropertyX" target="_blank" rel="noopener">user.@custompropertyX=resource.@custompropertyX</A>&nbsp;to the security rule, the list of apps are restricted correctly BUT the export privilege is greyed out (even with the export and exportdata selected).</P> <P>Can someone help me please ?</P> <P>Thank you</P> <P>Youssef</P> Tue, 10 Jan 2023 17:18:43 GMT https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2023944#M24075 YoussefBelloum 2023-01-10T17:18:43Z https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2025693#M24110 <P>Hello&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/50387">@YoussefBelloum</a>&nbsp;,&nbsp;<BR /><BR />Have you seen this?<BR /><BR /><A href="https://community.qlik.com/t5/Official-Support-Articles/Security-Rule-Example-Grant-Import-Export-privileges-for-Qlik/ta-p/1875288" target="_blank">https://community.qlik.com/t5/Official-Support-Articles/Security-Rule-Example-Grant-Import-Export-privileges-for-Qlik/ta-p/1875288</A><BR /><BR />I think adding the rule for Export with&nbsp;<SPAN>resource.HasPrivilege("read") should accomplish what you are asking.</SPAN></P> Fri, 13 Jan 2023 18:01:24 GMT https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2025693#M24110 Jay_Brown 2023-01-13T18:01:24Z https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2026319#M24121 <P>Hi <a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/8810">@Jay_Brown</a>&nbsp;</P> <P>Thank you for your answer.</P> <P>I didn't read that specific article but I have already implemented the resource.hasprivilege("read") for something else. but I'll definitely give it a try for this scenario.</P> <P>I'll let you know.</P> <P>Youssef</P> Mon, 16 Jan 2023 19:11:43 GMT https://community.qlik.com/t5/Management-Governance/Create-custom-content-admin-role/m-p/2026319#M24121 YoussefBelloum 2023-01-16T19:11:43Z