This article outlines which ACL permissions can be used to restrict/give access to reporting and the data they contain.
WEBI.Users.ShowAll
This gives the ability for a user in the LMS role with this ACL to report on all LMS users in the system. This needs a reports database refresh to become active as it updates the data security table RptAccessUsers in the reports database. So if you add this to an LMS role, you will have to wait until after the next refresh to be able to use it.
If a role does not have this ACL then:
- Users can only report on themselves unless they are a group manager or group administrator.
- Group managers and group administrators can report on all users in that group and all users in child groups of that group that they manager or administer.
WEBI.UserGroup.LMSStudents
This tells the LMS to put users into the LMSStudents group in the BO CMC.
- Users in the LMSStudents group are only allowed to run reports. They cannot edit or save to favourites.
- Users in the LMSStudents group are not allowed to schedule reports.
- A user must be in either the LMSAdministrators group or the LMSStudents group, but not both
- This ACL does not control the data that a user can see in a report
WEBI.UserGroup.LMSAdministrators
This tells the LMS to put users into the LMSAdministrators group in the BO CMC
- Users in LMSAdministrators groups are allowed to edit BO reports and save reports to favourites
- Users in LMSAdministrators groups are allowed to schedule reports
- A user must be in either the LMSAdministrators group or the LMSStudents group, but not both
- This ACL does not control the data that a user can see in a report
WEBI.UserGroup.QueryEditors
Users that are in a role that has this ACL are allowed to edit the report queries, such as add and remove objects and prompts
- Users must be in a role that already has the WEBI.UserGroup.LMSAdministrators ACL as they must be allowed to edit BO reports.
- This ACL does not control the data that a user can see in a report