Cloud Software Group, Inc. EBX®
Insight Add-on (New) Documentation > Administration Guide > Getting started
Navigation modeInsight Add-on (New) Documentation > Administration Guide > Getting started

Managing permissions

Overview

End user access to add-on functionality depends on how you set permissions. Users with permission to manually create dashboards can also set permissions for dashboards they create by specifying owners and viewers. Owners can create indicators and edit dashboards, but viewers have read-only access. However, keep in mind that only user profiles added to the Global permissions table can access dashboards. This means that even if a dashboard owner allows a profile to access a dashboard, that profile cannot view the dashboard without an entry in the Global permissions table. The following topic describes how to set permissions.

Managing permissions

To manage permission settings:

  1. Open the Administration panel and navigate to TIBCO EBX® Insight Add-on (New) > Permissions > Global permissions.

  2. Specify whether this is a restrictive policy. When more than one policy is active for a user or profile, the most restrictive policy is used.

  3. Create a new record:

    1. Select the '+' icon.

    2. Profile: Use the menu to select the profile that these permission settings apply to. A profile can refer to an individual user, or group of users.

    3. Permission strategy: Choose the appropriate permission strategy from the menu. The strategies are defined as follows:

      • Follow EBX table and field level permission The add-on will follow all permission settings for the specified profile as set in EBX® for tables and fields.

      • Follow EBX record level permissions The add-on will follow all EBX® permissions and follow any record level permissions specified in the DMA.

      • Bypass EBX permission: The add-on ignores EBX® permission settings and enables reporting on hidden assets.

        Note

        When multiple permissions are set for profiles, the most restrictive settings are applied. For example, if the Permission strategy for a user is set to Bypass EBX permission, but he is part of a group where Follow EBX permission is applied, the more restrictive Follow EBX permission strategy is applied to this user.

    4. Service permissions: Determines whether this profile can:

      • Access the Create a dashboard service to manually create new dashboards.

      • Use the Launch data profiling service to use the add-on's automated profiling to profile a table's data. Note that this service is always subject to the Follow EBX permission permission strategy.

      Deactivate permissions for these services if you only want the profile to have access to dashboards where they are included as a viewer or owner.

  4. Save and close the record.