TM1 Forum

HI,

Is there a way where I can sync the user security from TM1 to SharePoint, where a user's access rights defined in TM1 drives that access of particular files/folders in Sharepoint.
Can we sync the Active Directories of the two to give a single signon to achieve this?

There is no such thing as "TM1 Active Directory". Active Directory is Windows. If you are using Active Directory to assign users to groups in TM1 then you should be in synch. Keep in mind that the actual rights that the groups have to the objects in TM1 would still be done in TM1. That doesn't really matter because a cube in TM1 is not the same thing as a folder in Sharepoint.

Ok,
The MS Windows active directory is used as an integrated login to TM1.
Can we create a web view in TM1 with checkboxes, where a user can be given read or write access to a folder or a file in Sharepoint?

Sandy wrote:Can we create a web view in TM1 with checkboxes, where a user can be given read or write access to a folder or a file in Sharepoint?

No. TM1's use of Active Directory data is only one way, in. TM1 cannot write anything back to AD.

tomok wrote:No. TM1's use of Active Directory data is only one way, in. TM1 cannot write anything back to AD.

I wouldn't jump to such a statement. With sufficient effort anything is possible.

It's no problem for TM1 to update tables in a database via TurboIntegrator script using ODBCOutput command. So as long as you have a read/write ODBC driver for your AD and you have a user with write privileges to the DB then it is possible. Whether it would be allowed under IT policy is an entirely different matter.