https://community.qlik.com/t5/Official-Support-Articles/Download-Script-Log-button-is-greyed-out-or-throws-Error-Roles/ta-p/1710706 <P><BR /><IFRAME src="https://www.youtube.com/embed/wc5zhgurllg?wmode=opaque" width="560" height="315" frameborder="0" scrolling="auto" allowfullscreen="allowfullscreen"></IFRAME></P> <P>&nbsp;</P> <P><STRONG>Symptom/Error:</STRONG></P> <P>Download Script Log button in QMC is greyed out OR "<FONT face="courier new,courier">An error occurred: The operation failed due to insufficient privileges</FONT>" <BR />Users cannot download script log from QMC</P> <H3><BR />Environment:&nbsp;</H3> <UL> <LI>Qlik Sense Enterprise on Windows, June 2019 and newer</LI> </UL> <P class="qlik-migrated-tkb-headings">&nbsp;</P> <P><STRONG>Note:</STRONG> Ensure that is not related to <A href="https://community.qlik.com/t5/Knowledge-Base/Download-Script-log-button-is-greyed-out/ta-p/1710859" target="_blank" rel="noopener">Download Script log button is greyed out</A></P> <H3 class="qlik-migrated-tkb-headings">Resolution:</H3> <P>What are the roles that allow a user to download task script logs from QMC apart from RootAdmin?</P> <P>Both ContentAdmin and DeploymentAdmin roles are default roles, for which permissions are determined by the default Security Rules that come 'out of the box' in a fresh Qlik deployment.<BR />The roles are assigned to Users manually.</P> <P>Starting on the June 2019 release of Qlik Sense only RootAdmin natively has that permission to&nbsp;download of the task script log from QMC.<BR /><BR />Roles of ContentAdmin &amp; DeploymentAdmin roles used to allow the download of the task script log from QMC, but now need to be updated to allow the full download of the script log<BR /><BR />(AuditAdmin &amp; SecurityAdmin don't grant this permission)</P> <P><BR />You can&nbsp;grant the permission by adding&nbsp;<FONT face="courier new,courier">FileReference_*</FONT> to the list of resources for the respective Security Rule: (Best Practice is to not modify any default rules, but to Create a clone of the rule and then Disable the default rule)<BR /><BR /><IMG src="https://qlik.my.salesforce.com/servlet/servlet.ImageServer?id=0153z0000019IuOAAU&amp;oid=00D20000000IGPXEA4" border="0" alt="User-added image" /></P> <P>&nbsp;</P> <H3>Related Content:</H3> <UL> <LI><A href="https://community.qlik.com/t5/Support-Knowledge-Base/How-to-find-the-Script-Reload-logs-in-Qlik-Sense-Enterprise/ta-p/1717526" target="_blank" rel="noopener">How to find the Script (Reload) logs in Qlik Sense Enterprise</A>&nbsp;</LI> </UL> Fri, 07 May 2021 08:54:25 GMT Sonja_Bauernfeind 2021-05-07T08:54:25Z https://community.qlik.com/t5/Official-Support-Articles/Download-Script-Log-button-is-greyed-out-or-throws-Error-Roles/ta-p/1710706 <P><BR /><IFRAME src="https://www.youtube.com/embed/wc5zhgurllg?wmode=opaque" width="560" height="315" frameborder="0" scrolling="auto" allowfullscreen="allowfullscreen"></IFRAME></P> <P>&nbsp;</P> <P><STRONG>Symptom/Error:</STRONG></P> <P>Download Script Log button in QMC is greyed out OR "<FONT face="courier new,courier">An error occurred: The operation failed due to insufficient privileges</FONT>" <BR />Users cannot download script log from QMC</P> <H3><BR />Environment:&nbsp;</H3> <UL> <LI>Qlik Sense Enterprise on Windows, June 2019 and newer</LI> </UL> <P class="qlik-migrated-tkb-headings">&nbsp;</P> <P><STRONG>Note:</STRONG> Ensure that is not related to <A href="https://community.qlik.com/t5/Knowledge-Base/Download-Script-log-button-is-greyed-out/ta-p/1710859" target="_blank" rel="noopener">Download Script log button is greyed out</A></P> <H3 class="qlik-migrated-tkb-headings">Resolution:</H3> <P>What are the roles that allow a user to download task script logs from QMC apart from RootAdmin?</P> <P>Both ContentAdmin and DeploymentAdmin roles are default roles, for which permissions are determined by the default Security Rules that come 'out of the box' in a fresh Qlik deployment.<BR />The roles are assigned to Users manually.</P> <P>Starting on the June 2019 release of Qlik Sense only RootAdmin natively has that permission to&nbsp;download of the task script log from QMC.<BR /><BR />Roles of ContentAdmin &amp; DeploymentAdmin roles used to allow the download of the task script log from QMC, but now need to be updated to allow the full download of the script log<BR /><BR />(AuditAdmin &amp; SecurityAdmin don't grant this permission)</P> <P><BR />You can&nbsp;grant the permission by adding&nbsp;<FONT face="courier new,courier">FileReference_*</FONT> to the list of resources for the respective Security Rule: (Best Practice is to not modify any default rules, but to Create a clone of the rule and then Disable the default rule)<BR /><BR /><IMG src="https://qlik.my.salesforce.com/servlet/servlet.ImageServer?id=0153z0000019IuOAAU&amp;oid=00D20000000IGPXEA4" border="0" alt="User-added image" /></P> <P>&nbsp;</P> <H3>Related Content:</H3> <UL> <LI><A href="https://community.qlik.com/t5/Support-Knowledge-Base/How-to-find-the-Script-Reload-logs-in-Qlik-Sense-Enterprise/ta-p/1717526" target="_blank" rel="noopener">How to find the Script (Reload) logs in Qlik Sense Enterprise</A>&nbsp;</LI> </UL> Fri, 07 May 2021 08:54:25 GMT https://community.qlik.com/t5/Official-Support-Articles/Download-Script-Log-button-is-greyed-out-or-throws-Error-Roles/ta-p/1710706 Sonja_Bauernfeind 2021-05-07T08:54:25Z