Magnify provides a security feature that allows you to filter search results based on user permissions to access certain information using Managed Reporting.

Security is maintained through Managed Reporting Comprehensive User Services. When a record is loaded and indexed within the search engine, it is flagged as either secured or unsecured. Secured records are stored with references to a Managed Reporting domain. User search results will show only those reports they are eligible to view, meaning those reports contained in the domain(s) to which the user is a member. Users can belong to more than one domain.

Domains can also be used to classify data, for example:

• The Sales domain has access to the Client Information Database, Sales Reports, and the Customer Relationship Management application.
• The Accounting domain has access to the Salary Database, Pay Stubs in PDF format, and Profit and Loss Reports.

When a person requests the salary of an employee through a Magnify search, and they are not a member of the Accounting domain, the information is simply not returned in the search results and it appears to that person as if the data does not exist.

During a search, Magnify searches its index and identifies the eligible records. Each record is then dynamically checked against WebFOCUS through Managed Reporting to verify the user domain membership. Those records that the user is authorized to access are returned in the search results. When the user selects a search result, they are authenticated and authorized through WebFOCUS. Only then is the dynamic WebFOCUS report presented.

The WebFOCUS security layer is central to accessing the reports returned in the search results. In the event that WebFOCUS is unreachable, least privileged permissions are assumed, meaning all WebFOCUS reports are hidden unless WebFOCUS has authenticated and authorized the user.

Unsecured records are eligible for viewing by any user.

To enable the Magnify Managed Reporting security feature, you must add security parameters within the indexing process flow that instruct Managed Reporting to verify user accessibility to the requested reports. For more information on adding the required security parameters in the indexing process flow, see the Magnify Developer's Guide.

The security parameters are:

IBIMR_action

Tells Managed Reporting to determine if the domain is accessible by the user requesting access.

This parameter has a fixed value of MR_CHECK_DOMAIN_ACCESS.

IBIMR_domain

Standard WebFOCUS HREF for a domain. You can find this value within Dashboard or Managed Reporting.

IBIMR_return

Return type for the domain access. This parameter has a fixed value of HTTP.

Magnify validates each report by invoking a call through a URL that uses the security parameters. An example of this URL is:

http://mymachine.company.com:1234/ibi_apps/WFServlet?IBIMR_action=MR_CHECK_DOMAIN_ACCESS
&IBIMR_domain=11test12%2f11test12%2ehtm&IBIMR_returntype=http