Creation of New Role In RS

Hi Ruma,

One way that I've handled this type of situation is by filtering these departments out at the sql/report level. It's not ideal, but less maintenance than creating/maintaining rights to handle this.

Thanks,
Chris

You can do this in many ways within LBI reporting services.

You can create a "Everyone" security group, then assign "roles" to the security group, then assign the security group to reports except the two departments' reports?

Sorry not be clear. But of all the users, that access these reports there are 2 users who need access to these departments.

If I filter these departments in the crystal report then those 2 users will not have access to these 2 departments that they need to see.

I am trying to think whether I can create a role in RS that has access to all of the depratments and one that does not have access to those 2 departments.

Looking at the report security groups, roles for RS I cannot think how to exclude a department on the ceration of a role in RS.

Okay, I understand now. I haven't tested this out, but I believe this would work:

*Create a Right for the 2 users who can see all depts:
1) Create a Structure Group with Dept element = *
*Create a Right for the rest of the users who can't see the 2 depts:
1) Create a Structure Group with Dept element = *
2) Create a Structure Group that has the Dept element "Not Equal To" those 2 depts
*Create separate roles for a) the 2 users who can see all depts and b) the rest of the users and assign these roles to the appropriate rights created in the 1st two steps.

Thanks for the quick replies. I am creating it now and testing it. Hopefully is should work .

Thanks again.

It is not working.

These are my steps.

There is a role in LS sec admin called - lbi-rpts. This is added to each id in ls.

I created a new right and defined it as dept = * and dept != 800 and dept != 801. This right is added to to lbi-rpts.

The report is bursted by this structure which manes that whenever any user belonging to this right runs the report he will be able to access all depts but not 800 and 801.

Unfortunatedly the users can see both these depts. i cannot understand why.

I did some testing and found some odd results. If you create a right with just 1 "not equal to" operand, it correctly displays all values except for the value set to "not equal to". If you create a right with 2 "not equal to" operands, it incorrectly displays all values. Looks like a bug.

Also, it won't allow you to pipe the values when using the "not equal to" operand.

I got the same results.

I might take the easy way out and create 2 sets of reports and try and limit the departments in the filter and set access different for these 2 sets.

Sounds like your best bet.

FYI - I split the 2 "not equal to" conditions into 2 separate rights (instead of 1 right with multiple Structure Group), but still got the same results (all data).

Yes. I am creating and publishing 2 sets of reports with 2 kinds of access which is the only way out.

Thanks for your great help.