Security settings for reports
Important
This content is archived and is not being updated. For the latest documentation, see Microsoft Dynamics 365 product documentation. For the latest release plans, see Dynamics 365 and Microsoft Power Platform release plans.
Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012
To grant users access to reports, you must configure security settings in Microsoft Dynamics AX, Microsoft SQL Server Reporting Services or Microsoft SharePoint, and Microsoft SQL Server Analysis Services. This topic describes the tasks that you must complete in each product.
Configure security settings in Microsoft Dynamics AX
To configure security settings in Microsoft Dynamics AX, complete the following tasks:
Verify that each Microsoft Dynamics AX role is assigned the correct duties and privileges, so that users (who are assigned to the roles) can access the appropriate reports. For more information, see Create or modify a security role.
Assign users to Microsoft Dynamics AX roles. For more information, see Assign users to security roles.
Help secure the data that is displayed on reports. For more information, see Data security in Microsoft Dynamics AX.
Configure security settings in Reporting Services
If you are running Reporting Services in native mode, complete the following tasks to configure security settings in Reporting Services.
Assign users and groups to the DynamicsAXBrowser role
Follow these steps to assign users and groups to the DynamicsAXBrowser role on the Report Manager website.
Open the Report Manager website for the Reporting Services instance. By default, the URL is http://[SSRSServerName]:80/Reports_[SSRSInstanceName].
Click the DynamicsAX folder.
Click Folder Settings.
Click Security.
Click New Role Assignment.
Enter the Active Directory user name or group to assign to the DynamicsAXBrowser role.
Select the DynamicsAXBrowser role.
Click OK.
Restrict access to report folders and reports
We recommend that you use the security features and tools that are included in Reporting Services to help control access to report folders and published reports. For detailed conceptual information and step-by-step tutorials that can help you administer security in Reporting Services, see the SQL Server documentation.
Configure security settings in SharePoint
If you are running Reporting Services in SharePoint integrated mode, you must grant users permission to view reports in SharePoint. To grant this permission, grant users Read permission to the document library that stores the reports. Alternatively, if the document library inherits permissions from the site, you can grant users Read permission to the site. The following procedure describes how to grant users Read permission to the site.
Important
If the SharePoint site is configured for claims-based authentication, you must also grant the following accounts Read permission to the document library or site:
-
The account that is used as the Business Connector proxy
-
The account that is used to run the Microsoft Dynamics AX Application Object Server (AOS) service.
Open your browser and navigate to the SharePoint site that contains the document library that stores the reports.
Click Site Actions > Site Permissions.
Click Grant Permissions. The Grant Permissions window is displayed.
In the Users/Groups field, enter the Active Directory names of the users or groups that you want to view reports.
In the Grant Permissions area, select the Grant users permission directly option.
Select the Read check box.
Note
If you want Enterprise Portal users to be able to filter reports using a custom parameter value, select the Design check box. For more information about the permissions required to use Enterprise Portal, see Enable users to access Enterprise Portal.
Click OK.
Configure security settings in Analysis Services
Some reports use Analysis Services cubes to access data. Before users can view data on these reports, you must assign the users to roles in Analysis Services. For more information, see Grant users access to cubes.