Hi Anas,
did you check the Everyone group? If the system is set up initially this group is member of other groups so everyone is system admin to refine security. You would have to define your own system admins and the remove "Everyone" from all roles and groups within the Cognos namespace. This is a critical step to achieve license compliance with IBM!
If that is done, you can follow the guide from @Philipp Hornung. Remove the "Hide entries" capability from the desired roles and mark the folder/report as hidden. that's exactly how I do it in my Cognos systems to prevent regular users from seeing "system objects" but developers are able to see them.
![](https://dw1.s81c.com//IMWUC/MessageImages/1e714ce12aa444f0b8dab9d7bfcf4936.png)
This is how it looks in my system: Only the Full-Access role and BI Developers have this capability.
![](https://dw1.s81c.com//IMWUC/MessageImages/abad9132a0c444fc8e7aaedb6508196b.png)
Then hide the corresponding elements in Team content:
![](https://dw1.s81c.com//IMWUC/MessageImages/5be06719ae924dbb9c3510c4b8dc2a41.png)
If you need a more detailed control over which element is visible to which user (group) I highly suggest to set up a security concept with multiple roles and groups. Roles control the capabilities you have with your role. Which functions you can use within the system.
Groups should control to which data & objects the user has access to. This is also done on the properties of element within the Team content:
To set different security settings, you would have to check "Override parent permissions" to be able to add/remove groups.
![](https://dw1.s81c.com//IMWUC/MessageImages/2d28ab343ed04aa2891554cdc2cb58fa.png)
------------------------------
Robert Dostal
Team Leader BI
GEMÜ Gebr. Müller Apparatebau GmbH & Co. KG
Ingelfingen
------------------------------
Original Message:
Sent: Thu June 27, 2024 03:22 AM
From: Anas Ghayas
Subject: Cognos User Role & Profile
Hi Philipp,
Appreciate your response.
I have created a folder for these users and moved the report under the folder. I have made a group for these users as well but could not find a way to hide the folders from the Feature / Capabilities. When we create a user, it becomes a master user and appears in all roles like Administrator, everyone, etc. I would be grateful to you if could help on this.
Thank you
------------------------------
Anas Ghayas
Original Message:
Sent: Wed June 26, 2024 12:47 PM
From: Philipp Hornung
Subject: Cognos User Role & Profile
Hi Anas, You can hide the report folders and remove the capability to see hidden objects for the user role. You can create a report view (or maybe even a report shortcut) in a non-hidden folder for those users. If you have several groups of users with different reports then you could create more of such folders and give different access rights to those folders.
------------------------------
Philipp Hornung
Business Intelligence Manager
Techniker Krankenkasse
Hamburg Germany
#IBMChampion
Original Message:
Sent: Wed June 26, 2024 11:52 AM
From: brenda grossnickle
Subject: Cognos User Role & Profile
i do not think that it is possible to hide reports or folders in team content. you can protect reports from getting modified, not sure about protecting reports from execution. i have this internal doc. it is not exactly what you want but it might give you some ideas.
Objective
In some cases, it is necessary to secure specific reports to prevent unauthorized users from modifying them. Rather than manage permissions for individual users/reports, Cognos allows administrators to create a folder under Team Content and grant privileges to predefined user groups (Cognos and/or Active Directory).
The document outlines how to create a Protected Folder for storing reports that should only be managed by authorized personnel.
nitial Setup
1. Create a Cognos group named ProtectedReportAdmin
2. Create a folder in Team Content named Protected Reports
3. Remove all permissions from the Protected Reports folder except for the following:
BIProtectedReportAdmin | Full |
Report Administrators | Full |
Granting access to Protected Reports
To grant users access to the Protected Reports folder, simply add them to the BIProtectedReportAdmin Cognos group.
------------------------------
brenda grossnickle
BI Programmer Analyst
FIS
Original Message:
Sent: Mon June 24, 2024 07:40 AM
From: Anas Ghayas
Subject: Cognos User Role & Profile
Hello Champions,
I have specific users in Cognos and want to give them access to only one report. The other folders should not be visible to them on login. How we can define that role in the group.
Thanks
------------------------------
Anas Ghayas
------------------------------