NO Security access for elementsecurityput

[guru1988fortm1]

Hi All,

I am getting an error regarding to security when the turbo integrator process is run by my user

Error 'Execution got Aborted','No securityaccess for elementsecurityput'

This is what my scenario is

I have a user group called finance admin who will decide the forecast cycle and the Forecast year in an Lookup cube

He will select the forecast cycle and year in that cube and will run the process

so that the process will assign write access to all the user groups for the element(Forecast scenario say FQ2-M2) and assign read access to other forecast scenarios

This is the command i am using in the TI

ElementSecurityPut('Write','Scenario',Forecast_Scenario, V2); FQ2-M3
ElementSecurityPut('Read','Scenario',Prev_Forecast_Scenario, V2); FQ2-M2

V2-is the user group

I checked cube security and element security and dimension security and provided Write access to this financeadmin user group in all this
(he does not have admin access or security admin access)

So what should i do so that this user will have access to elementsecurityput(i am able to run this process and i am an admin)

Please could any one help me if you have come across similiar issue

Regards
Guru

[tomok]

Did you by chance forget to enable security access for the TI process? Right click on TI and make sure "Security access" has a checkmark next to it.

[guru1988fortm1]

Did you by chance forget to enable security access for the TI process? Right click on TI and make sure "Security access" has a checkmark next to it.

Hi Tomok,

, thanks a lot, it worked

But may i know the reason of it,

i could guess that if the users other than admin if needed to access security , we need to enable this

or any other reason or concept behind this

Thanks again
Guru

[declanr]

http://publib.boulder.ibm.com/infocente ... tyDat.html

Its been this way for a while.

Scheduled Chores would also be unable to run that part of a TI due to not being considered "Admin" but instead running in a state more similar to "Data Admin".

[qml]

This is part of the attempt IBM has undertaken to separate the role of "Data Admin" from the role of "Security Admin". All TI processes have the "Data Admin" type of access by default, but access to security changes needs to be granted explicitly, which actually makes a lot of sense.

If this didn't exist then it would be enough to have Admin access to one TI process to be able to make any security changes in the whole TM1 instance. You could simply edit it and add code to it that could change passwords, add users, delete them, assign groups etc. Fairly dangerous if you ask me.