Dynamic Security for dimensional members?

  • Ok so here's the problem.

    I have a corporate BFC (big fat cube) which some 20 different services access and within that several hundred employees. I want to employ 4 stage security, ie, for each dimension I have 4 roles, 1 = only very general stuff 4 = everything.

    The problem is I also only want each user to be able to see stuff within their service. I have a service dimension, which lists employees and service. How can I have it dynamically restrict access to only the service the employee is currently working in?

  • Chris Webb did a good article on this for something similar a while back which might help:

    http://cwebbbi.wordpress.com/2011/12/22/replacing-cell-security-with-dimension-security/[/url]

    I'm not sure that a dimension mapping every single user to services will be practical, nor creating all four of your roles for each service but you might have to. It's probably going to be better than creating subcubes for each service.

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply