Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2015-05-06 05:43 PM

Master Items Permission Rule

Hello,

I am trying to find a way to write a rule that would only allow Root Admins the ability to Create New Master Items. I want my normal users to be able to use these master items, but not create any.

How do I reference the master item in the Advanced security rules?

6,226 Views
9 Replies
Not applicable
‎2015-06-30 01:12 PM
Author

Great question, and I wish I had the answer.  It appears that if you are giving users the ability to create new apps, they also get the ability to create master items, but I too have not found a way to disable that without disabling the ability to create apps.

4,455 Views
0 Likes
Michael_Tarallo
Employee
Employee
‎2015-07-01 10:59 AM

Hello Donish,

That is a good question. Kris is correct, ContentAdmin roles for example and other non-roles  can create new apps in their My Work stream  - they can as you have seen can create Master Items too. Let me see if my colleague jog can provide any input?  - Jeff?

Regards,

Mike T

Qlik

Regards,
Mike Tarallo
Qlik
4,455 Views
0 Likes
Not applicable
‎2015-07-01 11:19 AM
Author

In response to Michael_Tarallo

By default, a user of a published app does not have access to create, update, or delete master items if they are not a content admin.

That said, on unpublished applications the owner is able to create master items for their apps before they have been published.

If you want root admins to have the ability to do the same as content admins, check out the rule named ContentAdmin.  You can modify it by changing the Condition from ContentAdmin to RootAdmin.  However, I recommend disabling the built in rule and creating your own version that mirrors it.

If you want to disable app creation, take a look at this video on Security rules.  SenseSecurityRules.mp4 - Google Drive

4,455 Views
0 Likes
agigliotti
Partner - Champion
Partner - Champion
‎2017-10-31 05:23 AM

In response to

Is there a way in QMC to duplicate a security rule?

4,455 Views
0 Likes
agigliotti
Partner - Champion
Partner - Champion
‎2017-10-31 05:26 AM

In response to

How we can manage Master Items read permission within security rule?

I need to know because applying a security rule as below the users can't see Master Items anymore.

((user.userDirectory="SF" and resource.app.name="Sales analysis" and resource.name="CRM") and (resource.objectType="measure" or resource.objectType="sheet"))

Can you help me?

4,455 Views
0 Likes
pablolabbe
Luminary Alumni
Luminary Alumni
‎2018-03-29 05:05 AM

In response to agigliotti

Hi Andrea,

Did you solved this Issue ? if yes, how ?

Pablo

4,455 Views
0 Likes
agigliotti
Partner - Champion
Partner - Champion
‎2018-03-29 05:10 AM

In response to pablolabbe

no really yet.

4,455 Views
0 Likes
mukesh19
Contributor II
Contributor II
‎2018-05-21 09:07 AM

In response to

Hi Jefferey,

Is there any way to give the access to users to create the master items with out giving the root admin and content admin privileges.

4,455 Views
mananmehta900
Contributor III
Contributor III
‎2018-08-09 04:12 PM

Hi Donish / Andrea / Pablo,

I had similar requirement to create a user role such that user should not be able to create Master Dimension/Measure/Visualization but should be able to create sheets, bookmarks and stories.

Following is what worked for me.

Stream and App level Security rules will only have READ access (in Actions check boxes while creating security rule)

For App Object Rule:

User Role = Dev_1 ( will be Root Admin in your instance)2018-08-09_15-05-33.png

P.S. I have separate rule for providing access to bookmarks and stories.

Hope this works for you.

Thanks,

Manan

4,455 Views