Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

Announcements
Join us in Toronto Sept 9th for Qlik's AI Reality Tour! Register Now
cancel
Showing results for 
Search instead for 
Did you mean: 
Not applicable

Section access reload issue on server

Hi

I have a qvw file with section access. The purpose is that, I want to restrict data visibility based on the attached file(just an example). Admin can see all country data, and users can only see their country data.

When I reload the file on desktop manually which is placed inside Qlikview\SourceDocument folder it runs fine, and then I use to place the qvw inside Qlikview\documents folder so that users can access via Access point. By following this process it works.

But, I want to be a scheduled run on the server, and I have created a task in QVMC which run fine. The document is also distributed to Qlikview\documents folder.

Now when i try to access the qvw using access point I get error msg: Failed to open the document, you might not have permission.

Why is this not working in scheduled run ?

below is my code for section access.

-----------------------------------------------------------------

Star is '*';

Section Access;

User:

LOAD LOGIN as NTNAME,

     ACCESS,

     COUNTRY_CD

FROM[QlikviewUsers.xlsx]

(ooxml, embedded labels, table is Sheet1);

User:

CONCATENATE LOAD * INLINE [

    NTNAME, ACCESS, COUNTRY_CD

    QV_ADMIN, ADMIN, *

];

Section Application;

User_Visiblity:

LOAD LOGIN as NTNAME,

     PROFILE,

     COUNTRY_CD,

     COUNTRY_NAME

FROM[QlikviewUsers.xlsx]

(ooxml, embedded labels, table is Sheet1);

User_Visiblity:

CONCATENATE LOAD * INLINE [

    NTNAME, PROFILE, COUNTRY_CD, COUNTRY_NAME

    QV_ADMIN, Admin, ALL, *

];

----------------------------------------------------------------------------

I have also added QV_ADMIN user in the list through which all our Qlikview services runs on the server. I came to know about this somehow from the community and google.

What else I'm missing here or I need to do some other way ? Let me know if any more detail is required.

Any help is much appreciated.

Thanks,

Roushan

25 Replies
Colin-Albert
Partner - Champion
Partner - Champion

Have you included the service account as an admin user with access to all data in the section access list?

jfkinspari
Partner - Specialist
Partner - Specialist

Try and move the QV_ADMIN from the concatenated INLINE list to the Excel user list, and see if it makes a difference.

nilesh_gangurde
Partner - Specialist
Partner - Specialist

Hi,

you have to give the admin rights to the account on which your all Qlikview servieces are running.

put one more line in your existing section access for the Serviece login ID

LOGINACCESSPROFILECOUNTRY_CDCOUNTRY_NAME
Admin1ADMINAdminALL*
User1USERUserDKDenmark
User2USERUserSESweden
Service Login IDADMINAdminALL*
Not applicable
Author

Yes, and that is QV_ADMIN account

Not applicable
Author

I already tried that by adding QV_ADMIN in the excel. But no Luck.

Not applicable
Author

I tried that, but makes no difference.

Peter_Cammaert
Partner - Champion III
Partner - Champion III

When creating your Section Access table, always use the UPPER() function to convert USERID, PASSWORD, NTNAME and whatever to upper case. Especially when loading from an external source. Solves a lot of Section Access mysteries. Maybe yours will be solved too.

Best,

Peter

Peter_Cammaert
Partner - Champion III
Partner - Champion III

Do I understand it correctly that before data reduction, you try to associate User_Visibility and User by way of two fields (NTNAME and COUNTRY_CD)? QV does not create synthetic keys for tables in Section Access...

Peter

Peter_Cammaert
Partner - Champion III
Partner - Champion III

A solution to this can be to create a Users key from both NTNAME and COUNTRY_CD. The annoying thing is that you loose '*' functionality. You'll have to do the expansion yourself. Or just drop the NTNAME link.

It's no use to create a User_Visibility table with exactly the same fields as Users. User_Visibility will have one unique field that links to section access, and other fields that link to the rest of the data. It's contents is just a list of all possible countries that are available in your data, not in the security file. To see this, imagine that you have a country called GRMBL that has data available but no ordinary user should be able to see it. You'll expect QV_ADMIN to have access to GRMBL data, but QV_ADMIN only specifies *, and country GRMBL won't occur in your security excel. The * of QV_ADMIN will expand to all values from column COUNTRY_CD in table User_Visibility that doesn't include GRMBL...

Peter