Data security
There are three different types of data security that we can implement: we can grant members of a role the permission to access entire cubes; and we can control access to data within a cube by granting or denying access to individual cells (Cell Security) or individual members on dimension hierarchies (Dimension Security).
Granting read access to cubes
Before a user can access any data in a cube, they need to be a member of a role that has Read permissions on that cube. A role can be granted Read permission on a cube by selecting Read on the Access dropdown box next to the cube name on the Cubes tab of the Role Editor.
If we have set up writeback on our cube, we can also control whether the Role can write data back to the cube by granting the Read/Write permission instead. Last of all, if we want members of the role to be able to run Drillthrough queries and create local cubes, we can grant permission to do this by choosing the appropriate option from the Local Cube/Drillthrough...
