SMS 2003 Report Security
Reports are secured Microsoft Systems Management Server (SMS) objects that you can create and manage within the SMS Administrator console. Like other SMS objects, you must have the appropriate credentials to create, modify, delete, view, or run reports. You must have Create permission for the Reports security object class to create or import reports. You must also have the appropriate permissions for the Reports security object class or instance to modify, delete, export, or run a report.
Report administrators must also have the appropriate user rights to connect to the SMS site namespace in WMI. Normally SMS administrators have this right by being members of the SMS Admins local group. Access to the SMS reporting Web site is also required. By default, all members of the Administrators and Reporting Users groups have access to the reporting point Web site.
If users need access to reports on the reporting point, add them to the Reporting Users local groups on each required reporting point. The Reporting Users group does not have any members by default. The SMS Reporting Users group does not have SMS object security rights configured by default. This group needs Read security rights on the Report SMS class or members of the group are not able to access reports, even though they do have access to the reporting Web site.
For more information about setting SMS class rights and overall report security, see Scenarios and Procedures for Microsoft Systems Management.