- From the Schema Tree View, select a role under the Security folder. The Schema Element Properties View displays in the right pane.
- In the Permissions box, expand the cube and select a hierarchy. Ensure the role has access to the cube and the dimension where the member’s hierarchy is located, as well as to the member’s hierarchy and level.
- For the level at which member security needs to be applied, click Create. The Member Security Dialog box appears. See Member Security Dialog Box.
- Select a member from the Members matching filter list and click the right arrow button to add it to the Selected Members box. Repeat as necessary.
-
Select the policy to Allow or Deny the member in the Selected Members box.
If you choose to Allow the selected members, then access to all of the other members within this level and their descendants is withdrawn.
If you choose to Deny the selected members, then access to only the selected members and their descendants is denied.
Using Allow and Deny makes it easier to use levels with many members. See the following two examples:- To grant access to 5 specific members out of 1,000, add those to the Selected Members box (perhaps even one at a time) and select Allow. This automatically restricts the other 995 members as if you had moved all 995 to the Selected Members box and specifically denied them.
- To grant access to all except 5 particular members, add those 5 exceptions to the Selected Members box and select Deny. This implicitly unrestricts the other 995 members, as if you had specifically allowed them.