locked
Row level Security for Entity RRS feed

  • Question

  • Hi,

    I am using SQL Server 2012 SP1 Master data services. How can I establish row level security for a entity?

    Thanks,

    Sambath

    Friday, February 22, 2013 11:23 PM

Answers

  • In MDS row level security is implemented using:

    Hierarchy Member Permissions

    So for instance in a Customer entity, has a Domain Attribute: PostalCode, and PostalCode is in a Derived Hierarchy of Region>State>PostalCode, you can set permissions at any level in the derived hierarchy.  So, for instance, a user can see all the Customer entity members in a particular State.

    David


    David http://blogs.msdn.com/b/dbrowne/

    • Marked as answer by Sambathraj V Sunday, February 24, 2013 8:27 PM
    Saturday, February 23, 2013 12:09 AM

All replies

  • In MDS row level security is implemented using:

    Hierarchy Member Permissions

    So for instance in a Customer entity, has a Domain Attribute: PostalCode, and PostalCode is in a Derived Hierarchy of Region>State>PostalCode, you can set permissions at any level in the derived hierarchy.  So, for instance, a user can see all the Customer entity members in a particular State.

    David


    David http://blogs.msdn.com/b/dbrowne/

    • Marked as answer by Sambathraj V Sunday, February 24, 2013 8:27 PM
    Saturday, February 23, 2013 12:09 AM
  • Thanks David. This solves my issue.
    Sunday, February 24, 2013 8:27 PM
  • Hi David,

    can you also explain how to combine "Entity" and "Hierarchy" Security?

    Sample:
    Entity1 (Code,Name,isCurrent)

    Requirement:
    -User should be able to ONLY edit "Name" Attribute, The Attributes Code+isCurrent should be Read-Only
    -User should be able to only edit "Name" Attribute in Case where isCurrent=1

    Approach:
    the Entity Security works without problems..
    I created a Hierarchy to group all members by "isCurrent", then set for Level "isCurrent"=1  READONLY
    --> This has no effect, it seems that security is applied in Order "Entity Security after hierarchy security"

    Thanks for Help!

    Thursday, August 8, 2013 11:06 AM
  • ok found the corresponding msdn article

    Overlapping Model and Member Permissions:
    http://technet.microsoft.com/en-us/library/ff487009.aspx

    but seems not fit to my scenario because in all cases to much members are not shown/visible anymore

    Thursday, August 8, 2013 11:34 AM