If you need to grant resource-specific permissions to users and groups that are not implied in any user types, you can grant the specific application or database permissions to users when creating or editing them in Administration Services. Using MaxL, you grant the permissions after the user is created by using the grant statement.
You can grant or modify user and group application and database permissions from an edit-user standpoint or from an application or database security perspective. The results are the same.
If a user has insufficient permission to access the data in a database, the value does not show up in queries, or shows up as #NOACCESS. |
There is no need to grant permissions to users or groups that are already Administrators—they have full permissions to all resources on the Essbase Server. For a given database, users or groups can also be granted any of the following permissions:
Table 122. Database Permissions
Indicates no access to any artifact or data value in a database. | |
Indicates that data and metadata access is restricted to those filters assigned to the user. (See Controlling Access to Database Cells Using Security Filters.) The Filter check box grants a filter artifact to a user or group. A user or group can be granted only one filter per database. Selecting this option or any other option except None enables the selection of a filter artifact from the list box. | |
Indicates read permission; that is, the ability to retrieve all data values. Report scripts can also be run. | |
Indicates that all data values can be retrieved and updated (but not calculated). The user can run, but cannot modify, Essbase artifacts. | |
Indicates that metadata (dimension and member names) can be retrieved and updated for the corresponding member specification. | |
Indicates that all data values can be retrieved, updated, and calculated with the default calculation or any calculation for which the user has been granted permission to execute. | |
Indicates that all data values can be retrieved, updated, and calculated. In addition, all database-related files can be modified. |