Dimensions Tab (Cube Role Dialog Box)
Use this tab to control the role's access to dimensions in the cube for which the role is defined.
Dimension security is defined with permissions and rules. A dimension always has a read permission, but only write-enabled dimensions have read/write permissions and may be updated by end users. For each permission, you can select from various rules (described later in this topic).
Note Changes to a read/write permission propagate to the database role of the same name.
For more information about dimension security, see Dimension Security.
Options
Name
View the names of dimensions in the cube. Data mining dimensions are not displayed. Security for data mining dimensions is not supported in Analysis Services.
Permission
View or set the permissions associated with the dimensions. A dimension can have read or read/write permissions.
Option | Description |
---|---|
Read | Determines which dimension members the users in the role can view. All dimensions have a read permission. |
Read/write | Determines which dimension members the users in the role can update. Only write-enabled dimensions have a read/write permission. If you allow access to a member in the read/write permission, it is viewable even if it is not accessible in the read permission. |
For each displayed permission, select a rule.
Rule
View or set the rules associated with the displayed permissions. The following table describes the rules that are available for each permission.
Permission | Rule | Rule description |
---|---|---|
Read | Unrestricted | The role can view all members. This rule is the default. |
Fully Restricted | The role cannot view members. When users in the role browse the cube, they do not see the dimension. | |
Custom | Only the levels and members you specify in the Custom Dimension Security dialog box can be viewed. To access this dialog box, select Custom, and then in the Custom Settings column click the edit (...) button. For more information, see Defining Custom Rules for Dimension Security. | |
Read/write | Unrestricted | The role can update all members. This rule is available only if the rule for the read permission is Unrestricted. |
Fully Restricted | The role cannot update members. This rule is the default and is available only if the rule for the read permission is Unrestricted or Fully Restricted. | |
Custom | Only the levels and members you specify in the Custom Dimension Security dialog box can be updated. To access this dialog box, select Custom, and then in the Custom Settings column click the edit (...) button. This rule is available only if rule for the read permission is Unrestricted or Custom. For more information, see Defining Custom Rules for Dimension Security. |
Custom Settings
View or set descriptions of custom rules. For other rules, this column is blank.