Security

Highlight Non-Existent Folders in Profile Security Permissions
It would be helpful to add a red color highlight or similar visual indicator to the list of folders in profile security settings to easily identify folders that no longer exist in Board but are still linked to a user profile's permissions. These "orphaned" folders continue to appear in the permissions list even though they…
Screen Password setup
Hello It would be great have the possibility to set a password at screen level, and any way a user want to access there, the psw will be required (except in design mode) Now, to restrict the access to a screen I have to use a single button. with this option the screen can be simply added to a menu and access will be…
Backup methods during the maintenance and operation phase
Hello. Currently, I am performing maintenance operations while having clients use capsules created with Board. I would like to take data backups as part of my regular work. As I understand it, the way to take backups in Board is to create a snapshot of the data model by making a copy of the files in a backup directory from…
Load information about users config from sub hub, roles, folder security
currently from SubHub I can extract a .csv file with main users information. It would be helful have same function from panels Role, features and folder securities have also the capability to schedul an expot of such files (not only manual export) Or have the capabillity to collect all these information through an API…
Enhanced Password Policy Configurations for Board 14 On-Premise Installations
With the release of the latest version of Board (14.1.0.0.208107), I noticed the new feature allowing users to change their own passwords on On-Premise installations. While this is a positive step toward enhancing user autonomy, it also introduces potential security concerns. Problem: In previous versions, password…
Automatic Profile Security Update When Renaming Folders in Board
We propose that profile security should automatically update when changes are made to the platform. Specifically, when a capsule folder is renamed using the "Rename" option in Board, the system should reassign the folder's permissions to the new name across all user profiles that previously had access to it. This way,…
Security cube visibility with Vertical Layout
Hello all, We have detected a problem concerning the application of “cube visibility security” and “vertical layout” combined with an “Algorithm”. Here's a simplified case: Entity: “Version” with members (Version1; Version2; Version_Final) Cube: “VERSION-LOCK” dimensioned by Version and with a 1 on “Version_Final”. Cube:…
Excel Add in - Error Messages
We sometimes get this error message when trying to refresh Excel Layouts: This user is not authorized to access the Board Server. Passwords are case-sensitive. We have found that sometimes this has nothing to do with the user setup/security but that the data model has been updated so the Layout is now out of date and needs…
Database security: Cube visibility
In the "Database Security" section, we have noticed that if we use cube visibility to define user action perimeters, it works everywhere except in dataflows. This behavior, despite being documented in the manual, seems quite illogical because if the functionality helps in profiling security profiles in a faster and more…
SubHub : Sync to data model : add option to trigger a procedure
The idea is to be able to trigger a procedure per data model once the synchronisation of the entities and relationship are done. Often you need to do some calculation based on user Role or metadata to account for the changes, give him access to workflow he previously didn't have to. And at the moment you have to rely on…
An Extended version of the Board Substitution Formulas
Board offers a diverse array of functionalities and features, positioning it in a prominent and distinctive position within the competitive landscape that spans both Business Intelligence (BI) and Corporate Performance Management (CPM). One of the standout features that distinguishes Board is its Substitutions Formulas,…
Cloud Administration Portal - block log clear
Hello, In the Administration Portal in the Board Log section, we would like to suggest the possibility of remove the clear bottom to prevent the user administrator to clear the information included in it. This request to allow us to be compliant to the SOX controls. We need to use log information to perform a specific SOX…
Unexpected behavior when setting up database security
Hi, We are trying out a new database security setup at a client. For now, we are adding security on one hierarchy, cost center lv0-3. Our security cube has the Lv0 entity, and has user. In the custom selection script, we have Select User = @User. This ensures that the system always only looks at the security set for that…
Add extract button in profile Security TAB & Automatize user & profile extract
Need: 1- Button to extract information from profile security tab as user tab already has 2- Automatize this information (ie: perform the extract inside a procedure, from a .bat or similar) Uses: This would be helpfull when searching information about user's information/loggings to find candidates to be deleted in order to…
Avoir un profil uniquement technique pour gérer les utilisateurs On Premise
Bonjour, il existe dans le Cloud Board un composant "Subscription Hub" qui permet de gérer les utilisateurs (profil de droits, licence, nom, prénom, …) mais sans pouvoir s'assigner de nouveaux droits limitant ainsi la possibilité à ce gestionnaire des utilisateurs d'aller voir des informations confidentielles dans les…
Cube Visibility & Cube cells locked by
Cloud version: 12.6 0288217 Hello, I can't get Cube Visibility (Deny cell editing in Database Security) combined with Cube cells locked by to work, even if the cubes are not conflicting. This is the error message shown on the Screen when you log in as a User (not Developer). The error message itself is not explanatory. Is…
Enable capsule security the same way we now have Folder security
Problem When users enter the Board main page, they would like to see all the capsules that they have access to in one place. These capsule cards can be customized nicely to show some preliminary information using sparkline/footer, they can be color coded, have backgrounds and icons. However, now, if we want to make sure…
❓Follow-up with Security Filters and Refers "To"
A coupe of week ago, I post this (also ticket 00095180 ) However now that the 17 novembre patch fixed the issue we finally resume testing on the security again. While the patch improved on the situation we have one edge case that seems strange : when a user end up with no value in the entity Etablissement in his security…
Additional Features in Folder Security
Problem Statement: The users don't want to view all the capsules/ folders and instead would like to navigate from a main Landing capsule to all the other Capsules based on Go to Screen navigation procedures. Issue: The existing Folder security when applied so that the users don't have visibility for other folders, impacts…
🧑‍🤝‍🧑Impersonate a user features
The idea is for account with developer licence and necessary access to a server to be able to Impersonate any user from his account directly. You select the user you want to impersonate from a drop down list then everything you view - his selects, read & write data, folder access etc.. - are like the member itself on your…
Add tools to migrate Roles / Features / Folder security (Life cycle management)
The idea is to add tools for developer to be able to migrate "Roles / Features / Folder" from on the server to another easily You can have many roles and folder security profil in a multiple application context and migrating those from on server to server is a tedious process at the moment. Either an export to csv file or…
Procedure Visibility in Security
Just like Cube Visibility in Database Security, it would be meaningful to have the same security functionality for Procedures, where you can have Cubes that control Procedures that are possible to run. It could also be applied to Data Reader (Visibility).
🚨 1 security filter's unexpected twist will leave you intrigued!
Hi everyone, I think it may be useful information for some of you to know that the 3 options under Security Filters actually doesn't have the same behavior! In fact the "Select Entity based on Cube" feature can be by passed the user itself! And it's by design *! By following the step bellow : Open a layout editor (where…
Logging Improvement - DbChanges.Log
Hello all, The DbChanges log is a great tool to have. It provides at a high-level what changed, by whom, at what time…but it's a bit TOO high-level. Currently, the log shows: 20230822 09:55:25Cubesadmin 20230822 09:55:25Cubesadmin 20230822 09:55:26Cubesadmin 20230822 09:55:26Cubesadmin 20230822 09:55:26Cubesadmin 20230822…
Logging Improvement - diagnosticYYYYMM.log
Hello all, Within the file "diagnostic«YYYYMM».log", there are various actions that are called out as part of the log. Specifically, if a process clears a cube without selections. [2023-11-01 08:48:10.648 -04:00] WARN { "Username": "x", "CorrelationId": "x", "Procedure": "cap - Update - Volume MS", "TaskId": "x", "Action":…
Export and import of users from IDP should use tab delimited .csv instead of comma delimited .csv
Hi, When we export the list of users and their settings from the IDP today, the data gets exported into a .csv file that works with regular commas as separator objects. This can cause problems, as it is possible to have commas in emails, in metadata, in the name of the role, etc. If then the file is opened and worked with,…
Track Cubes in Cube Visibility
Cube Visibility in Data Security is a great tool. However, it can be difficult to track which Cubes have been set. Especially when new Cubes are created during development. It would be helpful if you are able to highlight which Cubes have been set.
Data Access Control Architecture
1. Abstract Database and Application security refers in general to the range of tools designed to establish and preserve data confidentiality, integrity, and availability. In Board terms it is the definition of the various access levels so that the users are presented and can modify only data relevant to them and for which…

Security

Discussion List