A role model sets user permissions to access data used in building a business process. Access permissions are determined by means of data segments in the web application or authorization objects in the desktop application that link security subjects (users or groups of users) and cube data slices.
A data segment that is a cube slice fixed by at least one dimension is the minimum information unit, for which access permissions can be determined.
When a role model is set up, static and dynamic permissions of access to information objects are set:
Static permissions of access to data are permanent during all user work with a data source.
Dynamic access permissions to data are granted only on executing specific business process steps, to which data segments/authorization objects are linked.
To set up access permissions, execute the steps:
Execute one of the operations:
To create groups of users, use security manager of Foresight Analytics Platform.
To include users to groups of users, use security manager of Foresight Analytics Platform.
See also:
Building Process | Managing Data Segments | Creating Authorization Objects