Security Rules

Note:

Role-based security is currently in feature preview. You can opt-in via Manage Workspace Permissions in Worksapce Management

Documentation for this feature is still work in progress

Overview

For a given security group, there can be multiple rules configured to create fine-grained data access. Each hierarchy can have up to one rule of each for the following types:

1. Hierarchy Member Selection: This rule allows the selection of one or more members on the main hierarchy.
2. Attribute Member Selection: This rule allows the selection of one or more attribute members.
3. Direct Filter Expression: This rule allows the creation of a direct filter expression.

Multiple rules across multiple hierarchies are combined using a logical AND.

Hierarchy Member Selection

In this rule, you can select one or more members from the main hierarchy, which are combined using logical OR.

Attribute Member Selection

In this rule, you can select one or more attribute members, which are combined using logical OR.

Direct Filter Expression

In this rule, you can create a direct filter expression written in the DAX language.

Inverted Rules

For non-filter expression rules, they can be flagged as being inverted. This means that everything except the specifically selected items are allowed.