Securing the Cognos server
The default installation of Cognos allows unrestricted access to packages, reports, and administrative functions to all users. To control unauthorized access to specific Cognos functions and objects, Infor provides a security script that is executed after the installation of Workforce Performance. To control access, the script leverages the Workforce Performance roles that are assigned to the security groups in the application. The Workforce Performance roles are broken down into these types:
- System Administrator
- This role provides users with unlimited access to the Cognos Server and all the objects that are contained in the server. To enable this role for the required security group, set the Wbg Wbi Role to WBI Administrators.
- Report Author
- This role provides users with access to reporting tools, such as Query Studio and Cognos Analytics - Reporting, from within Infor Workforce Management and the Cognos Server, but disables the Cognos administrative functions. To enable this role for the required security group, set the Wbg Wbi Role to WBI Report Authors.
- Report User
- This role provides users with permissions to execute reports from Infor Workforce Management, but disables access to Cognos administrative functions, Query Studio and Cognos Analytics - Reporting. To enable this role for the required security group, set the Wbg Wbi Role to WBI Report Users.
After the security script is executed, these roles must be assigned to the appropriate security groups; otherwise, all access to Workforce Performance is denied.