Section access works with a single table, that can be fed from different sources.
So in your case:
SECTION ACCESS; LOAD * INLINE [ ACCESS, USERID, SALESPERSON USER, DOMAIN\ADMINISTRATOR, ABC ]; SECTION APPLICATION;
USERID must be in the form DIRECTORY\USER the same way it is in the QMC and recognized by the Proxy service, for example, INTERNAL\SA_SERVICE
Appreciate your prompt response. Ill try what you mentioned. I just have a question, incase you could take a min to answer them if possible:
1. In QlikView I implemented Section Access but i used two tables, one for authentication which authenticated the user with a userid and password and in the second table i performed the authentication(since there were two columns on which reduction was required). And it worked very well in QlikView. So is it that we can have two tables linked in Section Access in QlikView but the same is not possible in Sense ?
Yes, you can use two tables or more to get your security in place, however, the SECTION ACCESS ... SECTION APPLICATION only allows ONE table. If you are loading more than one, those must be joined in some way.
After section application statement yo do can use more tables to refine permissions at a field, row or group level.
By the way, you can specify as many columns as you want in the same section access table, you need not to create more tables if you just want to control several reduction fields in section access.
P.S.: See working example here:
There is a good document on Section Access here http://community.qlik.com/docs/DOC-1853
First always create a copy of your app without section access - as you have discovered, incorrectly applying section access can lock you out of your app!
The field names and data for section access must be UPPERCASE.
Your section access table for testing should be something like this.
For live use, you should use NTNAME instead of UserID and Password.
Load * Inline
ACCESS, USERID, PASSWORD, SALESPERSON
ADMIN, ADMIN, 123, *
USER, ADMINISTRATOR, 234, ABC
USER, USER2, 345, DEF
USER, USER3, 456, EFG
Remember that * in Section Access only refers to values listed in the Section Access table, not all values in your data.
So if you have a SALESPERSON XYZ in the data (not listed in the section access table above) then the ADMIN user cannot access this data!
Both ADMIN and USER as shown in the section access help for Sense.
There are more details on Data Reduction in Sense here
Appreciate your response Colin. The document mentions only USER under ACCESS and Admin is under USERID. Anyways i guess i should use NTNAME like you mentioned rather than USERID. My only doubt is the values under NTNAME will have to be exactly like the usernames in Active Directory, with the complete path, right ?