storagescope user premission

thanks for the reply,
I'm still a little confused, when I created my sts user account I right-clicked it and
created a new authorization rule, I named it storagescope user and under choose objects I selected type->storagescope reports->storagescope user
so in my selected action it says type storagescope reports, name-all, permission- storagescope user. so I'm not sure where I can remove Storagescope All

Hmmm... I guess you already went about this by manually creating a new authorization rule. And the rule sounds like it is configured correctly.

According to the documentation what you have configured should work the way you intended. The only other place I would check would be in the "Any User Rule" authorization rule. This applies to all users whether a role is applied to them or not. By default this will already give a user StorageScope User permissions (which I didn't know about until I went digging today). If someone changed the permissions assigned by default in this rule it could be overriding the authorization rule you created.

But you might want to try resetting the "Any User Rule" to the default permissions and removing the "StorageScope User" rule you created yourself. According to the docs this will achieve what you want without your manually created rule/group.

yup you're right Allen, I found that the any user rule already had the StorageScope User permission, so I removed the StorageScope User rule I created and was able to successfully log into sts with that account. But I'm able still able to fully modify/delete reports? I'm really stumped...