BusinessObjects Enterprise Administrator's Guide

Setting up a closed system of increasing rights

This tutorial shows how to set up the basis for a closed security model, wherein groups of users are first denied rights to all objects on the system by default. As you add folders and subfolders to the system, you increase the rights of users and groups, as required, so they can access their BusinessObjects Enterprise content.

In this scenario, you are creating folders for several groups within your organization. These are your security requirements for each folder:

Because this scenario first completely restricts access to the top-level folders, and then gradually increases access to subfolders further down the folder hierarchy, the results are essentially incompatible with the design of InfoView. The closed security model works best when you deploy a web desktop or other application that provides users with a list of all reports and/or folders to which they have access. The sample Report Thumbnail Client and the In-frame Client applications provide examples that are compatible with a closed security model. You can access these applications from the Client Samples area of the Crystal Enterprise Launchpad.

InfoView, by contrast, adheres to a hierarchical view of the system's folder structure. Thus, if users cannot access a top-level folder, they have no way of browsing its subfolders (even if they have Full Control over those subfolders and their contents). If you implement this closed security model in conjunction with InfoView, users will need to search for specific reports by name or description.

This tutorial consists of the following sections:

For a lengthier, more detailed tutorial, see Setting up an open system of decreasing rights.



Business Objects
http://www.businessobjects.com/
Support services
http://www.businessobjects.com/services/support/
Product Documentation on the Web
http://support.businessobjects.com/documentation/