Security Rules
Note:
Role-based security is currently in feature preview.
Documentation for this feature is still work in progress
Overview
For a given security group, there can be multiple rules configured to create fine-grained data access. Each hierarchy can have up to one rule of each for the following types:
- Hierarchy Member Selection: This rule allows the selection of one or more members on the main hierarchy.
- Attribute Member Selection: This rule allows the selection of one or more attribute members.
- Direct Filter Expression: This rule allows the creation of a direct filter expression.
Multiple rules across multiple hierarchies are combined using a logical AND.
Hierarchy Member Selection
In this rule, you can select one or more members from the main hierarchy, which are combined using logical OR.
Attribute Member Selection
In this rule, you can select one or more attribute members, which are combined using logical OR.
Direct Filter Expression
In this rule, you can create a direct filter expression written in the DAX language.
Inverted Rules
For non-filter expression rules, they can be flagged as being inverted. This means that everything except the specifically selected items are allowed.