you also wan to tick "Strict Exclusion"
Access to the document will be denied whenever the field values in the section access
reduction fields lack matches in their corresponding section application field.
Having this option unselected will mean that if QlikView can’t find a match to reduce
data, all data in the document will be visible on USER level. However, ADMIN will
always be able to see all data, regardless of the reduction. Best practice is to use strict
exclusion to avoid unwanted access to the QlikView document.