In SAS^® Financial Management, if you explicitly deny a user access to a composite model, the user is still able to create a new report based on the composite model.

However, if you explicitly deny a user access to an individual results model, the security/permissions work as expected.

As a workaround, explicitly deny access to all the results models that are contained in the composite model. Then, not only is the access denied for that user to the individual results models, but also to the composite model.

This is marked as fixed in release 5.3 of SAS Financial Management.

To deny access to the model:

• Select the Models workspace in SAS Financial Management Studio.
• Select the specific model and select 'Show properties for this model'.
• In the Properties dialog, select 'Security' and select 'Add...'.
• In the 'Add Users and Groups' dialog, enter part or all of the username (the user's SAS Financial Management log on ID) and select 'Search'.
• When the list of user IDs and Names appears, select the appropriate user and then select 'Add'. If you need to set security for multiple users, you can either select multiple usernames in this window (if the appropriate names are listed) and select 'Add' or else repeat this process until the appropriate users are all added.
• When finished adding users, select 'Close'.
• In the 'Security' window, select the appropriate username(s) and ensure that 'Can access this model' in the Permissions field is NOT selected.
• Select 'OK'.

Operating System and Release Information