Creating and configuring an access control policy for a delivered report

This topic describes how to deny access to delivered reports.

  1. Sign in to the tenant as an administrator with the role ConfigConsoleSecurityAdmin_ST, SecurityConfigAccess_ST or equivalent role created for your tenant.
  2. Select the Security Administration web application and navigate to UI Access Control.
  3. To create the policy:
    1. On the UI Access Control page, select the Delivered Reports tab.
    2. Select the Role.
    3. Click Submit.
      The policy exists and can be configured.
  4. Configure the new policy.
    1. From the UI Access Control page, Delivered Reports tab, select the policy to configure.
    2. Select the Policy tab.
    3. Click Configure.
    4. Expand the Reports tree to locate the Module, Category or Delivered Report. With the item selected click Not Accessible.
      • Module: Denies access to all reports for a module.
      • Category: Denies access to all reports within a category of a module.
      • Delivered Report: Denies access to a specific report.
      Click the Details link to view additional information. If the Information icon (the letter "i" icon) is available, you can click it to find additional details.
    5. Verify that the correct item is in the Inaccessible Items List and that associated items (children) of the selected item are also disabled.
    6. Click OK to save the configuration when you are finished.

      The policy is configured but is not in effect until it is activated. When you are ready for the policy to take effect, activate it. Instructions are in another section. Managing policies for delivered reports

      Note: To see the results of your configuration immediately, clear browser cache.