Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
We have UDC to replicate users into Qlik from Microsoft AD. There are multiple AD groups depending upon roles. We would like to implement a rule which will allow only the users to publish Apps belonging to a specific AD group. The rule should also cover creating Sheets or Stories as far as we understand.
In essence, how can we allow only a set of users belonging to an AD Group to publish Apps(create Sheets/Stories etc.)?
How do we do that please? Thanks in advance.
Hi,
We are able to restrict this in the stream level. We have created two associated rule:
Stream READ access will be restricted to AD Group != XXXXX
Stream PUBLISH access will be restricted to AD Group = YYYYY
Only users belonging to YYYYY will be allowed to publish to a stream.
The best option is going to be to create a Security Rule,
I would suggest to look at the following post:
https://community.qlik.com/t5/Qlik-Sense-Enterprise-Documents/iPortal/ta-p/1487372
And this video
https://www.youtube.com/watch?v=feSaaJZ7Jco
Kind Regards.
Yes - it needs to be maintained via security rules. What you also need to take care of is default security rules which are already in place. Some of them already give permissions mentioned by you out of the box to everyone so you have to disable them and recreate a new rules to replace them.