Hi all,

Experiencing an issue with InfoAssist in 8.1.0.5

When a user goes into InfoAssist, for some reason they can see Applications even though we're setting the list of applications in the security properties for each content folder (similar to how we did for Domains in 7.X).

8.1.0.5 seems to be picking up ALL content folders using a "*" or fuzzy search.

Example: We only grant access to application "test" but users will see all apps in InfoAssist with related names such as "test_a" or "test1" or "testB".

Has anyone seen this behavior before, and knows whether this is some sort of configuration that we can change/disable either in SC or at the Reporting Server level?

We need to restrict what our users can view in IA, but we cannot rename all of our applications since that would be a large effort.

Thanks in advance.

This message has been edited. Last edited by: <Emily McAllister>,

Are you setting the security properties for Groups or Userid or Role?

We're setting the security properties on the Content Folders, but the user groups have Rules set on them by Roles.

What they are allowed to create from depends on the role permissions of the security group they are tied to. You can edit role permissions to only allow those users to work from reporting objects; or you can edit them to allow them to work from master file descriptions. When doing so, they will only be able to see the master file descriptions that are in the app path for the domain security group they belong to.

I'm not positive but I believe security properties of the server app paths are set on the reporting server console under Access Control.

I'm working with bldkfs98 to troubleshoot this and I'm hoping a little more detail might spark an idea from someone more knowledgable...


In our WF instance, each Content Folder is associated with one application via the Server Properties tab (right-click on the Content Folder, select Properties and then Server Properties).

The expectation is that when report writers open InfoAssist to create a new report they will only see the masters from the one application listed on the Server Properties tab. In our production system (WF 7.7.03), as well as an earlier test environment (WF 8.0.10), that is exactly what happens.

However, in WF 8.1.05, when report writers open InfoAssist they can see the masterfiles from all applications that begin with the same name as the application listed under Server Properties.

Applications listed under Applications visible
WF Environment Domain/Content Folder Server Properties to InfoAssist
8.1.05 ABC test test, test_a, test1, testB
8.0.10 ABC test test
7.7.03 ABC test test

This causes a huge issue for us because we group application names by subject area (e.g. fin_payable, fin_receivable) and some applications contain sensitive information that should only be accessed by specific groups.

We are trying to determine if this new behavior is controlled by a configuration item that we can change or if it is a bug with 8.1.05.

Note - even though I referred to a report writer the behavior is consistent across all user types (Developer, User, Admin).

CoolGuy - We have main 3 roles - User, Developer and Group Admin. We do not use Reporting Objects and all roles have the ability to create reports directly from masters. We control what masters they can see via the applications that are associated with each Content Folder.

BabakNYC - We set up Access Control rules on the Reporting Server but that did not affect what applications were visible via InfoAssist. We then tried setting rules on the Application folders that permitted only certain groups to list the contents of each Application but that had no affect on the behavior either.

Hello,

This is a known issue which has been fixed in an upcoming maintenance release. I will PM you with details on how to obtain the fix for your environment.

Emily McAllister
Focal Point Moderator

This message has been edited. Last edited by: <Emily McAllister>,