Dimensions Tab (Database Role Dialog Box)
Use this tab to control the role's access to dimensions in the database.
Dimension security is defined with permissions and rules. A dimension always has a read permission, but only write-enabled dimensions have read/write permissions and may be updated by end users. For each permission you can select from various rules.
Note The dimension security settings in a database role can be overridden in cube roles of the same name.
For more information about dimension security, see Dimension Security.
Options
Name
View the names of dimensions in the database.
Private dimensions and data mining dimensions are not displayed. To define security for private dimensions, use the Dimensions tab of the Cube Role dialog box. Security for data mining dimensions is not supported in Analysis Services.
Permission
View the permissions associated with the dimensions. A dimension can have read or read/write permissions.
Option | Description |
---|---|
Read | Determines which dimension members the users in the role can view. All dimensions have a read permission. |
Read/write | Determines which dimension members the users in the role can update. Only write-enabled dimensions have a read/write permission. If you allow access to a member in the read/write permission, it is viewable even if it is not accessible in the read permission. |
For each displayed permission, select a rule.
Rule
View the rules associated with the displayed permissions. The following table describes the rules that are available for each permission.
Permission | Rule | Rule description |
---|---|---|
Read | Unrestricted | The role can view all members. This rule is the default. |
Fully Restricted | The role cannot view members. When users in the role browse a cube that includes the dimension, they do not see it. | |
Custom | Only the levels and members you specify in the Custom Dimension Security dialog box can be viewed. To access this dialog box, select Custom, and then in the Custom Settings column, click the edit (...) button. | |
Read/write | Unrestricted | The role can update all members. This rule is available only if the rule for the read permission is Unrestricted. |
Fully Restricted | The role cannot update members. This rule is the default and is available only if the rule for the read permission is Unrestricted or Fully Restricted. | |
Custom | Only the levels and members you specify in the Custom Dimension Security dialog box can be updated. To access this dialog box, select Custom, and then in the Custom Settings column, click the edit (...) button. This rule is available only if the rule for the read permission is Unrestricted or Custom. |
Custom Settings
View descriptions of custom rules. For other rules, this column is blank.