You enable object-level security access groups using the Visual KPI Designer. First, you use the Features configuration worksheet in the Visual KPI Designer to enable object-level security, and then you can assign user groups to individual KPIs and other objects using the Visual KPI Designer.
Enable Object-level Security
Open the Visual KPI Designer and connect to the appropriate Visual KPI site.
Click the Sitewide Settings configuration icon () and select Features & Config/Features.
The Features configuration worksheet is added to the workbook. If it already exists in the workbook, the Features configuration worksheet is activated and the current configuration data is retrieved from the database and displayed.
In the Features configuration worksheet, set Object Level Security to TRUE.
Click the Save icon in the Features configuration toolbar.
Now that object-level security is enabled, you can assign an access Group to a KPI or object.
Assign Security Access Groups to KPI or Object
If you want to allow a particular group access to a KPI or other object in your KPI website, you’ll need to first enable object-level security and do some other preparation. See Object-level Security for Visual KPI Websites
The final step in setting up object-level security is to tell the website which groups have access to which objects in the website. You’ll do this in the Visual KPI Designer for each KPI or object to which you want to limit access.
To assign security access:
Open the Visual KPI Designer and connect to the appropriate website.
Create a new KPI or open an existing KPI.
In the Access Group List column, add the name(s) of the groups that should be ALLOWED access. Use a semi-colon to separate group names.
Click the Save icon in the KPI tab toolbar.
Adding Access Groups
Security in Visual KPI uses standard Microsoft Active Directory and/or local Server Groups and Users. Learn more about Visual KPI Security.
In the Visual KPI Designer, you simply put each group that is ALLOWED to see an object in the Access Group List field separated by semi-colons. You can use any combination of local server groups and users. Here are some examples:
- Name\Access Group List
KPI xyz DomainName\DomainGroup; ServerName\LocalGroup; - For example, if the domain name is ALPHA and the server on which Visual KPI is running is named SERVER, this might look like:
Name \Access Group List
KPI xyz ALPHA\Domain Admins; ALPHA\Unit One Users; ALPHA\Bob Weldon; SERVER\Administrators; SERVER\Jimmy
This combination gives two Domain groups and one Local group access, plus it grants access to Domain User Bob and local user Jimmy. - The following combination ensures that EVERYONE can see the home page, but only a person in one of the two Domain groups can see the contents:
Group Name\Access Group List
–Home–Everyone
Site One ALPHA\Domain Admins; ALPHA\Unit One Users
See an overview of all steps for Visual KPI Object-level Security.