Re: User Management - Qlik Community

Anonymous · ‎2014-04-29

Hi Guys

Needed to find out the proper way to Show reports to Staff.

Currently this is done through Active Directory. So i set a user up make him a member of a group - Share this Group to a specific folder and then when that person logs in online sees the reports in his/her folder.

Is this the proper way or is there a different practice by Qliktech.

I am on The Admin course in June but for the meanwhile wanted to find out if this is the way or not.

Also if someone mentions use Section access we have over 400 reports so this is a last resort due to the time it will take.

Thanks All

jonathandienst · ‎2014-04-29

Hi

If you use AD like I think you are, you will be able to control which users can open the document, but every user will be able to see all the data in the document. If you want to limit access so that users can only see the data for their division (for example), then you will need section access coupled with initial data reduction.

HTH

Jonathan

Logic will get you from a to b. Imagination will take you everywhere. - A Einstein

Anonymous · ‎2014-04-29

I don't mind if people see the whole document problem i have is they end up mapping a drive and although it says read access only they are able to alter the Live report.

sudeepkm · ‎2014-04-29

they are able to alter the Live report.

Can you please explain your statement to me a little more?

Do you mean your end users are able to modify the content of the report?

How you are distributing the reports to the users? Are you using PDF distribution using third party utility like NPrinting or something else?

Peter_Cammaert · ‎2014-04-29

Other - sometimes easier methods do exist, but they depend on what QVS/QVP version you have at your disposal. In QlikView Server Small Business, that's about as far as you can go without Section Access.

Peter_Cammaert · ‎2014-04-29

If AD Users are able to modify a QVW file (in a Shared directory), this is probably due to an incorrect combination of NTFS / Share rights. Ask your system administrator to have a look at this.

Peter_Cammaert · ‎2014-04-29

Wait.

Why do end-users have (ReadOnly) access to a folder that contains QVW files? Once they can open a QVW in their own QlikView Desktop, they can save it in a local folder and start modifying it. I guess that's not something you want either...

Why not use the AccessPoint to eliminate this problem?

Anonymous · ‎2014-04-29

No We use access point but the Developers have The Live Server and Dev Server.

The Developers end up using the right given to read to access that drive open the report in Qlikview in the Dev environment and alter the report. Even though they have read access only?

Thanks

Anonymous · ‎2014-04-29

The Acces point is for everyone except developers.

The End Users only can access through Access point.

Its the Developers not listening and alter things i want to change.

sudeepkm · ‎2014-04-29

This is how the access works in our system.

1. Developers have only access to DEV environment (again this is restricted as per the Dashboard Project they are working on)

2. Developers do not have access to UAT and PROD (both QMC and SAN file server) any deployment is carried out by Prod support Team/Admin based on ticket and each time deployment happens a reviewer reviews the content.

3. End users have access to the Dashboards through Access Point only. End users do not have access to any environment's SAN or QMC.

I think you may need to think about the Developers Access Restriction for your environment.