Cognos 10 Security

这篇文章分两个部分：
1. 关于Cognos Security的架构，从验证方式到用户、组权限设定等；
2. 个人做的一个基于 “域”验证方式，以及FM中的4种安全设置测试。

参考资料：
IBM Cognos Business Intelligence V10.1 Handbook.pdf
Administration and Security.pdf
Business Intelligence Architecture and Deployment.pdf
Business Insight Advanced User Guide.pdf
Framework Manager User Guide.pdf

IBM Cognos 8 Business Intelligence: The officela Guide (Dan Bolitich)

个人写的学习文档，因为我是新手，难免会有错误，请批评指正！

因为文档内容较多，无法写在帖子里，所以上传到资源里面，在我的资源里面免费下: http://download.csdn.net/detail/zzphapy/4024123

这里只贴出来目录：

1.    Security Architecture. 3

2.    IBM Cognos Application Firewall 4

       1)     Data Validation and Protection. 4

       2)     Logging and Monitoring. 4

3.    Authentication Providers. 4

4.    Authorization. 5

5.    Cryptographic Services. 5

       1)     Using a Third-party Certificate Authority. 5

       2)     IBM Cognos Cryptographic Provider 5

6.    Authenticated Access Process. 6

7.    Users, Groups, and Roles. 7

       1)     Users. 7

       2)     Groups and Roles. 8

8.    Initial Security. 11

       1)     Built-in Entries. 11

       2)     Predefined Entries. 12

9.    Access Permission. 14

       1)     Permissions and Permitted Actions. 14

       2)     Deny permission. 16

       3)     Set Access Permission for Entries. 16

       4)     Trusted Credentials. 17

10.       Secured Functions and Features. 17

       1)     Functions and Features introduction. 17

       2)     Set Access to a Secured Function or Feature. 19

       3)     Set Access to User Interface Profiles for Report Authors. 21

11.       Object Capabilities. 22

       1)     Object Capabilities introduction. 22

       2)     Set Up Object Capabilities for a Package. 24

12.       Securing the Content Store. 25

13.       Specify Security Settings After Installation. 26

       1)     System Administrators and Predefined Roles. 26

       2)     Cognos Namespace. 27

14.       Setup AD and Grant rights for groups and users. 28

       1)     Install and Set the AD.. 28

       2)     Add Groups in the AD.. 29

       3)     Grant rights for Groups. 29

       4)     Create Users. 32

15.       Create a default Package. 33

       1)     Create a default Model and publish the package. 33

       2)     Create a simple report 36

16.       Package Security. 38

       1)     Add the Security during publish the package. 38

       2)     Add the package security from the FM.. 43

       3)     Introduction the users' permission: 44

       4)     Test the Package Security. 47

       5)     Note about the Package Security. 49

17.       Object Security. 52

       1)     Add Object Security on a Object 52

       2)     Add the permission for everyone. 54

       3)     Create a package based on this Model and publish it 55

       4)     Test Object Security. 56

       5)     Do more testing by you self 59

18.       Data Security. 59

       1)     Create Data Security on the Model 59

       2)     Publish the secured Package. 62

       3)     Test Data Security. 63

19.       Other Information. 65

       1)         DPR-ERR-2079  65