OLAP security

This topic provides information relating to best practices.

OLAP database root and local directory

The database directories of OLAP must be available to authorized users only. If no restrictions are set on this directory, any user can change or retrieve its content.

You must prepare and secure the OLAP central storage yourself. Nonetheless, in Service Expert you can secure the local OLAP folders by restricting access only to the windows account under which OLAP processes are running.

Data access permissions

We recommend that you use the access security features that are available in OLAP and assign permissions to individuals and groups of users. User permissions to access data are verified by OLAP at log on. We do not recommend that every user has OLAP Administrator permissions.

You cannot create new permissions or change the existing permissions and their descriptions. You can assign permissions to or remove permissions from roles, and you can change the descriptions of roles.