https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685774#M20137 Are these reports organized in SAS Folders? If so, are they in something like /&lt;Department&gt;/Reports or /Reports/&lt;Department&gt;? Tue, 22 Sep 2020 17:38:54 GMT gwootton 2020-09-22T17:38:54Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685650#M20123 <P>I would like to know high level steps/ strategy to restrict a Custom Group users to particular reports only.</P> <P>&nbsp;</P> <P>The requirement is to restrict a Department/custom user group &nbsp;to access &nbsp;only reports related to their Business Unit but should not have access to other department reports. I did tried to reading the document but could not comprehend&nbsp;</P> <P>how to accomplish this task. Thanks/Hissam</P> Tue, 22 Sep 2020 10:49:31 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685650#M20123 syedhisam 2020-09-22T10:49:31Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685717#M20131 Is this question for VA on Viya platform or SAS9? Based on the platform steps could vary. Tue, 22 Sep 2020 14:30:51 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685717#M20131 AnandVyas 2020-09-22T14:30:51Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685725#M20133 <P>My bad the &nbsp;Environment is VA on SAS Viya 3.4.</P> Tue, 22 Sep 2020 15:05:33 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685725#M20133 syedhisam 2020-09-22T15:05:33Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685774#M20137 Are these reports organized in SAS Folders? If so, are they in something like /&lt;Department&gt;/Reports or /Reports/&lt;Department&gt;? Tue, 22 Sep 2020 17:38:54 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685774#M20137 gwootton 2020-09-22T17:38:54Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685776#M20138 They are in SAS folder reports/department<BR /> Tue, 22 Sep 2020 17:49:07 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685776#M20138 syedhisam 2020-09-22T17:49:07Z https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685812#M20139 If you want the users to only be able to see the department folders they are a member of, we need to prohibit Read on the department folder. If you don't want them to be able to see the contents, we need to prohibit Read (convey).<BR /><BR />As Reports likely already has Read (convey) granted to Authenticated Users, we could add a conditional prohibit of either Read or Read (convey) depending on the desired behavior I mentioned above.<BR /><BR />A prohibit condition of: !(groupsForCurrentUser().contains('SASAdministrators') || groupsForCurrentUser().contains('Department'))<BR /><BR />translates to prohibit if the user trying to access is not a member of the SASAdministrators or Department groups. Tue, 22 Sep 2020 18:19:16 GMT https://communities.sas.com/t5/Administration-and-Deployment/Resctricing-a-custom-user-group-access-to-reports/m-p/685812#M20139 gwootton 2020-09-22T18:19:16Z