https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232552#M8115 <HTML><HEAD></HEAD><BODY><P>hi,</P><P>I hope, this will help:</P><P><A _jive_internal="true" href="https://community.qlik.com/docs/DOC-18222">https://community.qlik.com/docs/DOC-18222</A></P><P></P><P>In every rule you can set the parameter create, read and so on.</P><P><IMG alt="Security Rule editing.PNG" class="jive-image image-1" src="/legacyfs/online/158295_Security Rule editing.PNG" style="height: 465px; width: 620px;" /></P><P></P><P>Regards,</P><P>Petra</P></BODY></HTML> Thu, 30 Mar 2017 12:28:55 GMT berndshexe 2017-03-30T12:28:55Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232551#M8114 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>We are starting to set up our security rules for our organisation.</P><P></P><P>We have three types of users in the allocated AD Groups:</P><P></P><OL><LI>Those who will only read apps (and not create apps)&nbsp;&nbsp;&nbsp;&nbsp; :&nbsp; AD Group = <STRONG>QSENSE_Basic</STRONG></LI><LI>Those who will read apps and create their own but unable to publish&nbsp; : AD Group = <STRONG>QSENSE_Intermediate</STRONG></LI><LI>Admin type users who can create / publish / delete etc : AD Gourp = <STRONG>QSENSE_Advanced</STRONG></LI></OL><P></P><P>Can anyone advise how to set up the security rules for this?</P><P></P><P>I can see that there are already a lot of 'out of the box' security rules - so are there any I need to disable to achieve this?</P><P></P><P>Many thanks for your help!</P><P></P><P>TJM</P></BODY></HTML> Fri, 17 Mar 2017 15:46:58 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232551#M8114 2017-03-17T15:46:58Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232552#M8115 <HTML><HEAD></HEAD><BODY><P>hi,</P><P>I hope, this will help:</P><P><A _jive_internal="true" href="https://community.qlik.com/docs/DOC-18222">https://community.qlik.com/docs/DOC-18222</A></P><P></P><P>In every rule you can set the parameter create, read and so on.</P><P><IMG alt="Security Rule editing.PNG" class="jive-image image-1" src="/legacyfs/online/158295_Security Rule editing.PNG" style="height: 465px; width: 620px;" /></P><P></P><P>Regards,</P><P>Petra</P></BODY></HTML> Thu, 30 Mar 2017 12:28:55 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232552#M8115 berndshexe 2017-03-30T12:28:55Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232553#M8116 <HTML><HEAD></HEAD><BODY><P>i created a doc for the deifferent steps.</P><P>Hopes, it may help !</P></BODY></HTML> Fri, 31 Mar 2017 11:53:54 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232553#M8116 berndshexe 2017-03-31T11:53:54Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232554#M8117 <HTML><HEAD></HEAD><BODY><P>Hi Petra,</P><P></P><P>Where is the user.@AD_Group from? It's a custom property? and how this connects to the AD Group?</P><P></P><P>Thanks.</P></BODY></HTML> Thu, 20 Apr 2017 22:41:39 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232554#M8117 2017-04-20T22:41:39Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232555#M8118 <HTML><HEAD></HEAD><BODY><P>Hi David,</P><P></P><P>@AD_Group is a custom propertie, to show the case how to use security rulles for groups.</P><P>But if you have AD Groups, You will find them under user.group, with value you can see the groups in your AD.</P><P><IMG alt="AD Groups.PNG" class="jive-image image-1" src="/legacyfs/online/160746_AD Groups.PNG" style="height: auto;" /></P><P>means: ((user.group="XXX Consultants")) gives users in this Group access.</P><P>Hope, this helps,</P><P>regards,</P><P>Petra</P></BODY></HTML> Fri, 21 Apr 2017 07:21:38 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232555#M8118 berndshexe 2017-04-21T07:21:38Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232556#M8119 <HTML><HEAD></HEAD><BODY><P>Thanks Petra.</P><P>Weird thing is I don't have "group" , only name.ID,role and etc.</P><P>Any idea why the group didn't show up?</P></BODY></HTML> Fri, 21 Apr 2017 16:47:39 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232556#M8119 2017-04-21T16:47:39Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232557#M8120 <HTML><HEAD></HEAD><BODY><P>Hi David,</P><P></P><P>I don't know, why you don't see groups.</P><P>Please check your user directory connector.</P><P>We created a sync with all users and did not check "only existing users".</P><P>Maybe that's the difference?</P></BODY></HTML> Mon, 24 Apr 2017 06:23:07 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232557#M8120 berndshexe 2017-04-24T06:23:07Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232558#M8121 <HTML><HEAD></HEAD><BODY><P>Thanks, Petra.</P><P>Just figured out the problem. If I included the whole directory, the "group" appears.</P></BODY></HTML> Tue, 25 Apr 2017 21:41:27 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232558#M8121 2017-04-25T21:41:27Z https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232559#M8122 <HTML><HEAD></HEAD><BODY><P>Hi David,</P><P></P><P>great, I'm glad, that you found the solution.</P></BODY></HTML> Wed, 26 Apr 2017 07:50:34 GMT https://community.qlik.com/t5/Management-Governance/Qliksense-Security-rules/m-p/1232559#M8122 berndshexe 2017-04-26T07:50:34Z