I have a doubt. Is that section access need to be placed in script to apply section action using AD Users?
We have Publisher and want to apply Section action using AD users.
For Instance:
My Login ID is ACD/Shivendoo.kumar and I am manager and I should see all the employees data working Under ME. 3 employees are under me whose emp IDs are 123, 124, 125
So When I login I should see 4 employees data (Mine, 123, 124, 125)
We already have mapping table for AD users. but I am confused how to map that table to my applications?
Please give one example along with code and screenshot if any.
Assuming ACD/Shivendoo.kumar has ID = 100 there can be two main approaches for defining the
Seciton Access table.
In the first example the reduction values are explicitly defined, so that you says what values each user can see after the reduction.
LOAD * Inline [
ACCESS, NTNAME, REDUCTION
USER, ACD/Shivendoo.kumar, 100
USER, ACD/Shivendoo.kumar, 123
USER, ACD/Shivendoo.kumar, 124
USER, ACD/Shivendoo.kumar, 125
];
You can also use use wildcard int he reduction field, to say that a user should see all values. IMPORTANT: The reduction field wildcard corresponds to all values listed in the section access table, _not_ all values in the data table.
LOAD * Inline [
ACCESS, NTNAME, REDUCTION
USER, ACD/Shivendoo.kumar, 100
USER, ACD/Shivendoo.kumar, *
USER, ACD/Employee One, 123
USER, ACD/Employee Two, 124
USER, ACD/Employee Three, 125
];
Always make sure to look at the QlikView Reference Manual and Introduction to Section Access to get an understanding of how Section Access works and example of implementations. If you can not resolve your issue, please provide a sample QVW so that we can see your setup and data, in order to give better advise.
I have gone through the document and still have couple of doubts.
I have below query to fetch all AD Users:
SELECT
'USER' AS ACCESS,
NTNAME,
EMPID
FROM DBO.ADUSERS
and getting data into below format
ACCESS
NTNAME
EMPID
USER
Domain\Shivendoo.Kumar
1000
USER
Domain\Shivendoo.Kumar
1002
USER
Domain\Ram.Kumar
1002
What is the best way to import data from AD USER Table into Section Access Table at Section Access Management on Management console ?
Will it dynamically change here in Section Access Table If there is any change in AD User Table (Like user made inactive or added one more employee under shivendoo.kumar 1000,1002,1003)? Or one should manually change in Section Access Table at Section Access Management on Management console ?
I tried: Ran above query in my DB and copied the data into excel and then on Section Access Management on Management console, I clicked on Import data and then pasted my data from Excel into it. So finally all users got created in Section Access Table. There is any other way to do it? something like directly connect to DB and load required data?
Where this Section Access Table data is getting stored?
Now When I create a hidden script and go to--> Insert-->Section Access-->Publisher Authorization and select Internet File and provided link http ://abcd:4780/QMS/AuthTable" click on next and then I am confused to select file type and other parameters ? What I need to select? Refer the attached Screenshot
Instead of doing so If I load data from AD User Table to a QVD file (Reload every day so that All changes will be applicable here) and then Use this table in Hidden script to apply security.
I would like to know the difference between Publisher Authorization and INLINE LOAD?
