Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Version History

« Previous Version 10 Next »

Activity Hub access and security is set by the Data Governance Committee and Data Stewards. 


Activity Hub

Required: At the Activity Hub level there is very limited access:  only Cognos, Tableau and column groups can directly connect to an Activity Hub.  Report developers and report consumers use Cognos or Tableau to access Activity Hub data.  Data integration developers and integrated application use column groups to access Activity Hub data.

Row Level Security

Additional security can be requested in the form of row based security.  The Activity Hub can reference an access matrix that will contain a user login against the rows of data that users is assigned to see.  The most common example of this is userid to department.  Based on that matrix, the activity hub will only show data to users in that matrix and will only show that user the rows they are associated with.

Row level security is applied prior to Active Directory (AD) group security, therefore, AD group security cannot over-ride row level security.

Currently, only EAH is using row level security.

Team Folder

Required: The security applied to Cognos Folders and Tableau Projects rely on Active Directory (AD) groups.  Report developers work with their local Departmental Security Administrator (DSA) to create or use existing AD group.  The report developer then sends the AD group name to the BIA team so that the BIA team can create the team folder and connect it to the team AD group.  The report developer can manage the participants of that AD group in order to manage who has access to the reports saved to that folder.  For the Employee Activity Hub (EAH), Financial Activity Hub (FINAH), Research Activity Hub (RAH) and Student Activity Hub (SAH), access to the report will grant access to the data within the report.


Report / Workbook

Optional:  Report developers can limit the data displayed in their reports.  Limiting data creates an additional level of security.

  1. Set filters that the report consumer cannot change.
    1. Cognos Filters Users Cannot Change
    2. Tableau Filters Users Cannot Change
  2. Limit the values in the filters that the report consumer can change.
    1. Cognos Filters Consumers Can Change - Limited Values
    2. Tableau Filters Consumers Can Change - Limited Values
  3. Limit the filters that the report consumer can change to single select.
    1. Cognos Single Select Prompts
    2. Tableau Single Select Prompts
  4. Limit your report to run in HTML only.  Tableau is automatically set to this but you can add it to your Cognos report.
    1. Cognos Limited Run Types
  5. Use both the folder security and data source security for your report.  Cognos is automatically set to this but you can add it to our Tableau report.
    1. Tableau Workbook and Data Source Security
  6. Use your own spreadsheet to associated users with departments in order to secure the report.
    1. Email busintel@ucsd.edu to ask for help setting that up.


  • No labels