Cube access control cubes
When an application with an OLAP database is created, a cube named #_TABACC is
generated for the database. #_TABACC is a two dimensional cube. The application and data
access roles are shown on the #__GRP__ dimension. The second dimension contains a list of
all available cubes. You can use the cube to assign READ, WRITE, NONE, or DEFAULT rights
for roles and a cube. Specify the appropriate access level in the cell located at the
intersection of the cube name and role you want to administer.
Caution:
If a user has Administer
OLAP Database permission, no data access permissions are checked.
Note: The cube must be enabled for Cube access control to apply this setting to an OLAP
model.
This table describes an example of a #_TABACC access cube from the Samples OLAP database with two cubes (#_TABACC and SALES) and these standard roles: BulkImport, Designer, ViewRole, AdministratorRole, MasterRole. In this example, all roles have default permissions for both cubes. Samples can be enabled only in on-premises environments.
| LOCAL/Samples | ||
| #_TABACC | ||
| #__GRP__ | #TABACC | SALES |
| BulkImport | Default | Default |
| Designer | Default | Default |
| ViewRole | Default | Default |
| AdministratorRole | Default | Default |
| MasterRole | Default | Default |