One way to assign permissions to users and groups is to define user and group types when you create or edit (modify the permissions of) the users and groups.
In Administration Services, users and groups can be created in different ways to specify their system-level permissions. These methods are represented in Administration Services Console as user types. In MaxL, user types do not exist; instead, you grant the permissions after the user is created.
In Administration Services, users can be created with the following types:
A user or group with Administrator permission has full access to the entire system and all users and groups. The user who installs Essbase on the server is designated the System Administrator for that server. Essbase requires that at least one user on each server has Administrator permission. Therefore, you cannot delete or downgrade the permission of the last administrator on the server.
Users or groups with ordinary permission have no inherent access to any users, groups, or resources. This type of user is the default user.
Users with Create/Delete Users, Groups permission
This type of user or group can create, delete, edit, or rename users and groups with equal or lower permissions only.
Users with Create/Delete Applications permission
This type of user or group can create and delete applications and control permissions and resources applicable to those applications or databases they created.
Users with Create/Delete Applications permission cannot create or delete users, but they can manage application-level permission for those applications that they have created. See Managing Global Security for Applications and Databases in Native Security Mode.
See Creating Users in Essbase Native Security Mode and Creating Groups in Essbase Native Security Mode.