Implementing Attribute-Hierarchy Restrictions

Attribute-hierarchies are restricted through allowed and denied sets assigned to a database role. An allowed set identifies the members of an attribute-hierarchy the users in a role are permitted to access. A denied set identifies the members to which the users in a role are denied access. Both allowed and denied sets may be employed to fine-tune an attribute-hierarchy restriction but most database roles make use of just one or the other.



By restricting the members of an attribute-hierarchy, the other hierarchies in the dimension are restricted through auto-exists functionality.

In most implementations, ...

Get Microsoft® SQL Server® 2008 MDX Step by Step now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.