Implementing Attribute-Hierarchy Restrictions
Attribute-hierarchies are restricted through allowed and denied sets assigned to a database role. An allowed set identifies the members of an attribute-hierarchy the users in a role are permitted to access. A denied set identifies the members to which the users in a role are denied access. Both allowed and denied sets may be employed to fine-tune an attribute-hierarchy restriction but most database roles make use of just one or the other.
By restricting the members of an attribute-hierarchy, the other hierarchies in the dimension are restricted through auto-exists functionality.
In most implementations, ...