IBM Cognos administrators should be aware of a security limitation when leveraging Cognos Access Manager (CAM) for user authentication with IBM Cognos TM1. When the Cognos TM1 server is configured to run in security mode 4 or 5 there is a potential for a user to retrieve inconsistent and incorrect data results. This issue results from a Cognos BI user being assigned the TM1 data security definition of a previously logged-in user when these users share a similar security group profile. Please review this document for detailed instructions and use case scenarios. The recommended interim work-around calls for more explicit definition of CAM group assignments that exactly match a user’s Security Group profile defined within the Cognos TM1 server.
Please note, this issue has been addressed in IBM Cognos Business Intelligence 8.4.1 FP3 and IBM Cognos Business Intelligence 10.1 FP1. Upgrading to one of these versions will eliminate this potential issue.
|Business Analytics||Cognos TM1||TM1||Windows||9.5.1, 9.5, 9.4||All Editions|
|Business Analytics||Cognos Express||Security||Windows||9.0||All Editions|
|Business Analytics||Cognos Business Intelligence||Security||AIX, HP-UX, HP Itanium, Linux, Solaris, Windows||10.1||All Editions|
|Business Analytics||Cognos Business Intelligence||Security||AIX, HP-UX, HP Itanium, Linux, Solaris, Windows||8.4, 8.4.1||All Editions|