Hi All,
Just wondering if anyone else has had to deal with this scenario (I'm sure many of you have?!?)
"Projects" are assigned to a user at various level of an organisation, the underlying security is always [Project ID]. If I belong to Business Centre X - I will have 1,200 [Project ID] returned by the security component.
Is it possible to limit the projects available to a user via filters / MDX to the 1,200? So when Joe Bloggs access some report or wants to perform some digging arounf in ProClarity, etc the data is secured without being able to turn off the underlying security filter... easy in a OLTP system...
Trying to get some organisations to understand the concept of "roles" that allow trusted employee's to perform analytics across company data is a little difficult. What comes to mind is "are you getting the whole picture"? ~;0)
Hope it makes sense.
Many thanks, Ian.
Sounds like you're looking for a dynamic dimension security solution, where access to dimension members (in this case, Projects?) is controlled, based on the identity of the user. Is the mapping of users to projects available as OLAP data, or is the list of projects for a user fetched from an external system (in which case, an Analysis Services Stored Procedure may be needed)?
Here are some links to information on dynamic dimension security in Analysis Services:
Dynamic Dimension Security in Analysis Services 2000
Introduction to Dimension Security in Analysis Services 2005
Using UserName to Control Data Access and Default Member in SSAS 2K5
|||Deepak, many thanks for your quick reponse... I'll be off reading then... I posted this question as there is some much info on security!!!
"Analysis Services Stored Procedure" sounds interesting... I'll have to investigate
Cheers
Ian.
No comments:
Post a Comment