Re: Restricting users from publishing App or add s... - Qlik Community

anirban_chakrab · ‎2018-11-29

We have UDC to replicate users into Qlik from Microsoft AD. There are multiple AD groups depending upon roles. We would like to implement a rule which will allow only the users to publish Apps belonging to a specific AD group. The rule should also cover creating Sheets or Stories as far as we understand.

In essence, how can we allow only a set of users belonging to an AD Group to publish Apps(create Sheets/Stories etc.)?

How do we do that please? Thanks in advance.

anirban_chakrab · ‎2018-12-09

Hi,

We are able to restrict this in the stream level. We have created two associated rule:

Stream READ access will be restricted to AD Group != XXXXX

Stream PUBLISH access will be restricted to AD Group = YYYYY

Only users belonging to YYYYY will be allowed to publish to a stream.

NadiaB · ‎2019-04-14

Hi @anirban_chakrab

The best option is going to be to create a Security Rule,

I would suggest to look at the following post:

https://community.qlik.com/t5/Qlik-Sense-Enterprise-Documents/iPortal/ta-p/1487372

And this video

https://www.youtube.com/watch?v=feSaaJZ7Jco

Kind Regards.

Don't forget to mark as "Solution Accepted" the comment that resolves the question/issue. #ngm

anirban_chakrab · ‎2019-04-15

Thank you. Will check.

Lech_Miszkiewicz · ‎2019-04-15

Yes - it needs to be maintained via security rules. What you also need to take care of is default security rules which are already in place. Some of them already give permissions mentioned by you out of the box to everyone so you have to disable them and recreate a new rules to replace them.

cheers Lech, When applicable please mark the correct/appropriate replies as "solution" (you can mark up to 3 "solutions". Please LIKE threads if the provided solution is helpful to the problem.

Restricting users from publishing App or add sheets or Stories