I've been told that users cannot be retricted to specific reports (fexes) within a domain. Is that true?

Here's the scenerio: I have 99 reports (fexes) in a single specific domain and I want to restrict a user to being able to only see (see the report names not see the internal code) and execute reports "report01" through "report15". I do not want them to see or execute "report16" through "report99". Can we restrict users to specific fexes based on this scenario? Or, do I need to move my reports to separate domains and restrict access that way? I know that retricting reports by domain is an option. But, can I leave all my reports in the same domain?

This message has been edited. Last edited by: Doug,

Turn off "Show on User's List" option in the fex properties and they can't see or select them to be run. However, you can still use them in -INCLUDES, drill downs, etc.

That would hide the associated fexes from all users. I want to hide selected fexes from a selected user.

The way MRE is set up is that all users who have acces to a domain can use everything within that domain. If you have some users who should not see something in a domain then either that user should not belong to that domain, or that object,fex, etc. should not be in that domain. We have a similar instance and manage it with two domains. One group ONLY has access to the shared domain, while the other group has access to the shared domain AND the domain with the additional "restricted" procedures. There isn't another way with the standard set-up to do what you want.

The WebFOCUS 7.7 Security Model will hopefully allow that type of access control.

you do it by writing your own launch page for the domain... don't use List block or Domain Tree thing, use Launch block and have it read the domain's domainname.html file like a atext file and construct your own list of fexes as hyperlinks. Based on the userid, your list of availables is limited.
We do this alot.
We do this particularly for the Public View, with links to other views based on the username being in the MRE Repository for that Group...

and as Dan says, WF77 or 7610 (i saw that in print today!) will allow for SUBGROUPS of people within GROUPS. so for a subgroup you can have, say, another Tab.

This message has been edited. Last edited by: susannah,

Thanks Everyone... I think that I'll take a mix of Susannah's and mine (from Chubb Insurance), and work with that... I did something similar to what Susannah mentioned fro a major self service application at Chubb... I'll go with wheat we have thus far...

The bottom line is that it is not a "normal" WebFOCUS function... But, I do like Launch Pages...