By Ahmed Eltoukhy
Cognos Framework Manager (FM) is an essential part of using IBM Cognos Analytics.As well as being the designated Business Intelligence (BI) modelling tool of the Cognos family, FM is where operators can implement data-level security.
This is critical for organisations that need tailored views on the data output from a centralised dashboard or report.
Rather than creating multiple reports for each type of user in your business, data-level security protocols allow you to create just one. You then build views specific to each Role, Group or even User in your database, which show only the relevant information to the designated party and can be reused on future BI models.
Essentially, Cognos FM gives you a streamlined way of delivering tailored data output to every individual in your organisation, without creating multiple BI models. However, it can be complex to set up - and businesses still run into ongoing maintenance issues.
Today, we’re going to look at how to implement your data-level security, as well as how to improve its efficiency.
A typical BI Model in Cognos FM (go_data_warehouse_dq from Samples):
How to implement data-level security in Cognos FM
To add data-level security to your BI modelling, follow these five steps in Cognos FM:1. Find and highlight the table to apply data-level security to. This can be a database table, or a logical table like (Query Subject).
2. Click the Actions menu, and then Specify Data Security (see image below).
3. Start adding Roles, Groups, or even Users from Cognos Administration. These can be from Cognos default security namespace, or even from your Authentication Provider (AD) namespace.
4. Add the filter to be applied whenever this user/group/role member runs a query, report or dashboard - this determines exactly what they will see.
5. Click OK, save the project, and publish the package again. This allows the changes made to Cognos FM to take effect on the published package available through Cognos Portal.
There - you’ve successfully set up data-level security! Then users can get the specific information they need - and only that - whenever they run a report.
That is simply the general approach of data-level security implementation in IBM Cognos. However, the great drawback of this is the ongoing maintenance.
In my next blog, I will be detailing an intelligent automated approach to streamline the data-level security implementation while bringing maintenance overhead to the minimum.
To learn more about Cognos Data Security and other IBM Cognos applications and features, please contact Ahmed Eltoukhy at firstname.lastname@example.org or on 0403 566 693.