About Cognos Security In IBM Cognos, an authentication provider provides access to a (generally external) authentication source (e.g.

Series 7 Access Manager, LDAP, Active Directory, etc). By configuring an authentication provider in IBM Cognos, you define an authentication namespace. Each user, group and role in an authentication namespace has a unique identifier in Cognos called a "CAMID". Virtually all Cognos content will have references to one or more CAMIDs. Examples of this include: most objects in Cognos have : an owner property which will refer to the CAMID of the owning user. a policy set, which lists the CAMIDs of users, groups and roles are entitled to the Cognos object (and their level of access) all content in a user's My Folders area is associated with a user's CAMID each user's preferences and portal tabs are associated with their CAMID Framework Model Object Security - modelers may restrict access to Namespaces, Query Subjects and Query Items based on groups / roles (references their CAMID). Transformer Models may have Custom Views to enforce security on cubes. These custom views are configured as visible to certain users, groups & roles (references their CAMID). When you migrate to a different authentication namespace, all users, groups and roles from that new namespace will have different CAMIDs (even if they are semantically the same user, group or role).