Hi Michael

I had similar question some time ago but then I have changed my approach when I realised that person who has an access to the QlikView/Qlik sense application should have access to all reports coming from this app and there is no harm in that. The main reason behind this thinking is: that person already has access to all this information directly in Qlik Sense App. 

Now I will try to answer your question below:

1. If I have 5 different groups that I want to only use On Demand Reports how can I define access to NPrinting Reports for these 5 groups so they only see their reports

Answer: My approach would be to use container object to hide\show "OnDemand Report"  extension object in Qlik Sense so only people belonging to groups you mentioned can see it. The other solution would be the create custom security roles in NPrinting. Each user which wants to run OnDemand reports needs to be first created in NPrinting with proper AD account. We can define NPrinting roles and assign to those users. Custom role will not prevent them from seeing a button in Qlik Sense but will decide if that button will work or not. Check http://help.qlik.com for details on roles 

2. In the Export section how long will the reports be saved?  Can they automatically delete?

Answer: They will stay as long as user decides to keep them there - its personalised view per person

3. I noticed in the 'New Report' the user can select multiple reports.   Is there a way to restrict this so they can only run a single report?

Answer: It is more complex process as you would need to create dedicated NPrinting App and Dedicated Connection to this app and build report based on that dedicated connection...quite cumbersome solution. But is that a good solution, I doubt and frankly here comes my initial thought about why we want to restrict this access?