Data Security Model
The data security model is used to control the specific content in the data warehouse that is accessible by a group of users. These models can control what type of data a user can access as well as which instances of data a user can access. For example, these models can restrict access to orders or invoices for only customers in California.
The data security model is a powerful security feature that can be used to do the following:
• Limit the dimension and fact tables a designer can access when defining queries.
• Expose only a subset of the columns in a specific dimension or fact table; for example, show price, but not cost to a group of users.
• Constrain the rows that are exposed; for example, define a sales territory or product line a user can access.
To define specific instances in the model, you can define a constraint with filters as part of the model. Each constraint requires the selection of a column from the dimension followed by the selection of the distinct values for the column that is included in the data security model.
With data security models in place, a designer can create a common dashboard with visual items that expose all the content in a data warehouse; for example, all product lines and all sales territories. Users of the dashboard see a view that limits their content to the product lines and sales territories that are exposed in the data security models of which they are members.
Access the data security model by clicking Data Security Model from the Administration drop-down menu.
The data security model toolbar contains the following buttons:
• New Folder. Create a folder.
• New Model. Assign access to dimensions and facts to build a new data security model.
• New Builder. Build a new data security model based on characteristics of the data.
• Open. Open a selected model.
• Rename. Rename a model.
• Copy. Copy a model.
• Delete. Delete a model.
Data Security Model