The secured functions 
and secured features 
within the functions, which are also referred
to as capabilities, control access to different administration tasks
and different functional areas of the user interface in Cognos 8
.
Examples of the secured functions are Administration and Report
Studio. Examples of the secured features are User
Defined SQL and Bursting.
Content Manager reads the users’ permissions at logon time. Depending on the permissions for the secured functions and features, users can access specific components and perform specific tasks in Cognos 8.
When a content store is initialized, the initial permissions
for the secured functions and features are created. The permissions define
which of the predefined and built-in Cognos groups and roles have
access to which secured functions and features, and the type of
access. The initial permissions grant unrestricted access to Cognos 8
because the built-in role System Administrators includes the group
Everyone in its membership. You must remove the group Everyone from
the membership of System Administrators before you start setting
access to capabilities. For more information, see Initial Security.
When running a report using the Run as the owner option, the capabilities of the owner are used for bursting and report layout properties in the HTML format. All other capabilities are based on the user who runs the report.
