Essbase User Roles for Shared Services

Roles, which determine the tasks that users can perform, can be grouped in the following ways:

The following Essbase roles provide different levels of authority to perform tasks in Essbase.

You can provision a user with the following roles for an Essbase Server:

You can provision a user with the following roles for an application:

In Shared Services Console, roles belonging to Essbase are grouped under the Essbase node; roles belonging to Essbase applications are grouped under the application nodes.

Note:

There is no concept of provisioning an Administration Services Administrator user role through Shared Services. When migrated, an Administration Services Administrator is assigned no roles in Shared Services.

Table 120 lists the user roles that are specific to Essbase and the Shared Services role of Provisioning Manager, which is application-specific. The table shows the corresponding tasks that each user can perform.

Table 120. Essbase and Shared Services User Roles and Tasks

User Role

Task Description

Project Manager

(A Shared Services role) Creates and manages projects within Shared Services.

Administrator (previously Supervisor)

Full access to administer the server, applications, and databases.

Note:

The Provisioning Manager role, which is a Shared Services application-specific role, is automatically assigned when you migrate Essbase Administrators (previously known as Supervisors). However, when you create an Essbase Administrator in Shared Services Console, you must manually assign the Provisioning Manager role. Users with the Provisioning Manager role can provision users and groups with roles for applications.

Create/Delete Application

Ability to create and delete applications and databases within applications. Includes Application Manager and Database Manager permissions for the applications and databases created by this user.

Server Access

Ability to access any application or database that has a minimum access permission other than none.

Application Manager (previously Application Designer)

Ability to create, delete, and modify databases and application settings within the particular application. Includes Database Manager permissions for databases within the application.

Note:

The Provisioning Manager role is automatically assigned when you migrate Essbase Application Managers. However, when you create an Essbase Application Manager in Shared Services Console, you must manually assign the Provisioning Manager role.

An Application Manager can delete only those databases that he created.

Database Manager (previously Database Designer)

Ability to manage databases (for example, to change the database properties or cache settings), database artifacts, locks, and sessions within the assigned application.

Calc

Ability to calculate, update, and read data values based on the assigned scope, using any assigned calculations and filter.

Write

Ability to update and read data values based on the assigned scope, using any assigned filter.

Read

Ability to read data values.

Filter

Ability to access specific data and metadata according to the restrictions of a filter.

Start/Stop Application

Ability to start and stop an application or database.