Analysis Services security features
Analysis Services provides a rich set of security features that allow us to control every aspect of how a user can interact with a cube. In this section we'll describe how Analysis Services security actually works, and the different types of permission you can grant to a user.
Roles and role membership
Analysis Services uses roles to manage security. A role is a security group, and users have to be members of one or more roles in order to access the cube. We can grant a role the right to access any cube object or perform any administrative task.
Given our requirements, we will need to create several roles. We will need to create roles to secure countries, so we'll have one role for French users which only allows access to data from France, one for Canadian users that only grants access to Canadian data, and so on. Similarly we will also need to have one role for each reseller who is to access the cube. This may mean, of course, that we end up having a large...
