A role model is used to set user permissions to access data used in building a business process. Access permissions are determined by means of authorization objects that set a link between security subjects (users or groups of users) and data segments.
A data segment that is a cube slice fixed by several dimensions is the minimum information unit, for which access permissions can be determined.
When a role model is set up, static and dynamic permissions of access to information objects are set.
Static permissions of access to segment are permanent during all user work with a data source. Static access permissions are determined on creating and setting up authorization objects and set static data segments.
Dynamic access permissions to segment are granted only on executing specific business process steps. Dynamic data segments are created during steps execution.
To set up access permissions, execute the steps:
To create groups of users use the security manager of Foresight Analytics Platform.
To include users into groups of users, use the security manager of Foresight Analytics Platform.
See also: