TM1 Forum

Posted: **Thu Jun 03, 2010 4:00 am**

Hi,
I'm implementing TM1 9.5 with TM1 Contributor. I used single sign-on (integrated login) with Active Directory (AD) for my security setting.
So, if a user has logged in to his Windows, then he doesn't have to entry username or password when opening the TM1 Contributor.
This single sign-on is implemented by using IBM Cognos Connection as the mediator between TM1 and AD.

Furthermore, the access right for each node in Contributor is assigned to a certain AD groups. So, for a user to has access to Contributor, I only have to assign him to a certain AD group.

My question is: Is it possible to block a group from accessing the Contributor during a certain period of time?

Thanks in advance for your help and answer guys n gals.

Regards,
Comma

Posted: **Fri Jun 04, 2010 8:55 am**

Hi guys,
I'm still expecting answers here.
Really appreciate your help

Posted: **Fri Jun 04, 2010 10:19 am**

You can deactivate the application in the Contributor. While deactivated, any user can't access the application except administrator.

Posted: **Fri Jun 04, 2010 12:50 pm**

Hi DTA,

Thanks for your reply, but I don't want everyone to be unable to access my application.
I only want some groups to be unable to access it, while the other groups still can input data to the application.
Is it possible?

Posted: **Mon Jun 07, 2010 9:08 am**

comma wrote:Hi DTA,

Thanks for your reply, but I don't want everyone to be unable to access my application.
I only want some groups to be unable to access it, while the other groups still can input data to the application.
Is it possible?

You can set the security for clients/groups and Cube Security. For the group you don't want to access, you choose the Access Privileges to be "None".

Posted: **Wed Jun 09, 2010 2:42 am**

DTA wrote: You can set the security for clients/groups and Cube Security. For the group you don't want to access, you choose the Access Privileges to be "None".

Can I make it to be flexible? I can do what you said, but then I have to change the security assignments each time I want to open / close the access of certain groups.

Posted: **Wed Jun 09, 2010 5:56 am**

If you have definite logic of client's assignments to the TM1 Contributor you can create TI process, that will change client's security assignments or create rule in control cubes.

Posted: **Tue Jun 22, 2010 12:37 pm**

Maybe I'll try to create the TI.
Thanks asvlad

Posted: **Mon Nov 29, 2010 12:54 am**

There is a group which contributor creates called {everyone that appears to control users access to tm1 applications in one of architect security cubes of contributor.
it is as it is working in our customer right now.
best regards,
Paolo

TM1 Forum

Block user access to TM1 Contributor

Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor

Re: Block user access to TM1 Contributor