Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2010-03-24 04:42 PM

DMS group authorization

Team - How do we utilize active directory groups with DMS mode? We don not want to give individual rights to each document.

We want to use DMS authorization to control access to qvw's. We can give access to individuals and it works fine, but it does not works when we give access to groups.

Any help will be appreciated.

Thanks

1,835 Views
0 Likes
1 Solution

Accepted Solutions
lhr
Employee
Employee
‎2010-03-25 06:57 AM

you need to set up the directory service connector (dsc) for group resolution to work in dms mode.

configure an active directory connection in QEMC -> system -> setup -> dsc -> active directory. normally all you need to do here is to press the little button next to the path and apply.

note the url to the dsc on the summary tab.

verify that the qvs has the same url in system -> setup -> qvs -> security.

verify that the account running the qvs is member of the local group qlikview administrators on the machine running the dsc.

restart the qvs.

cheers,

lars

View solution in original post

778 Views
0 Likes
6 Replies
lhr
Employee
Employee
‎2010-03-25 06:57 AM

you need to set up the directory service connector (dsc) for group resolution to work in dms mode.

configure an active directory connection in QEMC -> system -> setup -> dsc -> active directory. normally all you need to do here is to press the little button next to the path and apply.

note the url to the dsc on the summary tab.

verify that the qvs has the same url in system -> setup -> qvs -> security.

verify that the account running the qvs is member of the local group qlikview administrators on the machine running the dsc.

restart the qvs.

cheers,

lars

779 Views
0 Likes
Not applicable
‎2010-03-25 02:07 PM
Author

In response to lhr

Thanks Lars,

It will still not work, I understand from qliktech support that DMS authorization does not works without Publisher, and we do not have Publisher License at the current client location.

Have you tried it without Publisher? Please let me know and we will try that.

Thanks again

778 Views
vgutkovsky
Master II
Master II
‎2010-03-26 10:52 AM

In response to

In my experience, if you want to use AD groups with DMS authorization, you need to specify the DSC in Distinguished format. For example, if your domain is test.mydomain.com, then distinguished format would be: LDAP://DC=test,DC=mydomain,DC=com

You also need to be careful how you specify the AD groups in the Authorization tab since it's sensitive to .com, .local, etc. Thankfully, it's not case-sensitive 🙂

Regards,

778 Views
lhr
Employee
Employee
‎2010-03-26 11:01 AM

In response to

no i haven't tried that, but if support says it won't work...

/lars

778 Views
vgutkovsky
Master II
Master II
‎2010-03-26 11:04 AM

In response to lhr

Oops, didn't notice that there is not Publisher. I've never tried it w/o Publisher so I couldn't really say...

778 Views
0 Likes
Not applicable
‎2010-03-26 02:58 PM
Author

In response to vgutkovsky

Hi Vlad - Support has made it clear that without Publisher DMS authorization does not works.

Thanks again to everyone on providing their input on this.

Regards

778 Views
0 Likes