Siebel Analytics Installation and Configuration Guide > Configuring User Authentication and Security in Siebel Analytics > Levels of Security in Siebel Analytics >

Metadata Object Level Security (Repository Groups) in Siebel Analytics

Metadata object security is configured in the Analytics repository (SiebelAnalytics.rpd) using the Server Administration Tool. "Everyone" is denied access to each of the subject areas. Each subject area is configured to give explicit read access to selected related responsibilities. This access can be extended to table and column level. For more information on object level security, see Siebel Analytics Server Administration Guide.

NOTE:  In the shipped product, only permissions at the subject area level have been configured.

Siebel Analytics supports hierarchies within the groups in the repository. In the Analytics repository there are certain groups that are parent groups, which define the behavior of all the child groups. Inheritance is used to let permissions ripple through to child groups.

Data-Level Security in Siebel Analytics Applications

NOTE:  Data-level security in Siebel Analytics applications is based on the position- and organization-based security model of the Siebel operational applications. See Security Guide for Siebel Business Applications.

Data-level security defines what the application user sees inside a report. The same report, when run by two different users, can bring up different data. This is similar to how the My Opportunities view in a Siebel operational application displays different data for different users. However, the structure of the report is the same for all users, with one exception. The exception is when a user does not have access to a column within a report. This is a rare case; Siebel Analytics handles this situation by returning the report without the column in question.

Data-level security is configured exclusively through the Analytics repository using Repository groups (the equivalent of Siebel responsibilities). It is configured at the logical layer, mostly on dimensions. The Fact tables, other than the most sensitive Revenue facts (Closed Revenue, Opty Revenue and Expected Revenue), are not secured directly. However, dimensions are secured,.

Other data security models such as custom models can be configured in the metadata using similar techniques. This security configuration requires an understanding of the business model setup and filtering mechanisms. See Siebel Analytics Server Administration Guide on using variables in the repository.