Roles Permissions

In SEI, Roles Permissions configuration is a fundamental aspect of maintaining data security and ensuring efficient system operation. This section of the documentation provides comprehensive guidelines on configuring and utilizing Roles Permissions effectively. It is designed to help administrators understand how to assign specific permissions to different roles, ensuring that users have appropriate access to functionalities and data within SEI. By following these guidelines, administrators can create a tailored and secure environment that aligns with their organization's policies and requirements.

General Guidelines

  1. Understand the Roles: Before assigning permissions, it is important to have a clear understanding of the SECURITY and BASIC roles.

    • SECURITY should be assigned to administrators or super-users responsible for building and maintaining data models, managing governance, OLAP cubes, and distribution jobs, as well as creating new environments.

    • BASIC is designed for users who need to use and manipulate existing views, reports or dashboards and possibly create their own versions.

  2. Assign Permissions: Check the appropriate permissions boxes next to each function required by the role. Refer to predefined guidelines below for each role to ensure consistency and security.

    • SECURITY: Assign all permissions necessary for full system management, including the option to create, modify and delete of data models, views, and procedures.

    • BASIC: Grant permissions that allow the user to view, create, and interact with reports and dashboards. Restrict permissions that would enable altering system-wide settings or data-models.

    Test the permissions with a user account assigned to each role to ensure they can perform their expected tasks without issue.

  3. Renew and Update Permissions Regularly: As new features are added and organizational needs change, periodically review roles and permissions to ensure they still provide the appropriate level or access.

  4. Document Changes: Keep a log of permissions changes for each role to help with audits and troubleshooting.

Recommended Values

Here are the recommended values for the typical BASIC and SECURITY roles:

General Roles
Category Roles Basic Security
Overview  
Administration

Manage Security

Manage Global Parameters

Manage Global Variables

Manage Distribution

Environment & Data Sources

Manage Global Scripts

Manage Application Links

Manage Global Selection Pages

Manage License Information

Manage Dictionary

Languages

Manage Excel Publish

OLAP Manager

Create Installation Template

Manage Installation Template

Import Template

Manage Data Warehouse

Manage Reporting Trees

 

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

Command Center

Organize Command Center Data Models

Organize Command Center Views

Create Data Model

 

P

P

P

P

Folder

Create

Rename

Delete

P

P

P

P

P

P

Dashboard

Rename

Change Publish for

Change Owner

Lock or Unlock

Open

Create

Design

Save As

Delete

Subscribe to Distribution

Add other emails in To, Cc and Bcc

Send Comment

Export

Print

Use Filtering Function

P

P

P

P

P

P

P

P

P

P

 

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

Reports

Rename

Change Publish for

Change Owner

Lock or Unlock

Open

Create

Design

Save As

Delete

Subscribe for Distribution

Add other emails in To, Cc and Bcc

Send Comment

Export

Print

Use filtering function

P

P

P

P

P

P

P

P

P

P

 

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

Excel Add-in

Formula wizard

Formula drill-down

Data Entry

Link to formula

Pivot Table

Pivot Table Refresh

Duplicator

Data Extraction

Data Extraction Refresh

Prompt

Quick Prompt

Create Static Copy

References Configuration

Change Password

Open View

Refresh Formulas

Data Model Configurations

Environment Configurations

Reporting Tree Selector

Reporting Tree Node Selector

Reporting Tree Duplicator

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

Workbook

Copy Folder

Rename

Create

Save As

Delete

Toolbar Visibility

P

P

P

P

P

P

P

P

P

P

P

P

OLAP Manager

Add and Save Cube

Copy and Delete Cube

Navigation

Build

Load All

Refresh

   P

P

P

P

P

P

 

Data Model Roles
Category Roles Basic Security
Overview  
Data Model

Design

Copy Data Model

Overwrite Data Model

Manage Selection Pages

Manage Data Model Parameters

Manage Stored Procedures

Translate Data Model

Manage Info Pages

View Info Pages

Create Documentation

View Documentation

Rename

Delete

 

 

 

 

 

 

 

 

 

P

 

P

P

P

P

P

P

P

P

P

P

P

P

P

P

View

Rename

Change Publish for

Change Owner

Lock or Unlock

Edit Prompt Selection on Open

Open

Save

Create

Save As

Delete

Subscribe to Distribution

Add other emails in To, Cc and Bcc

Send Comment

Export

Print

Use Data Entry

 P

P

P

P

P

P

P

P

P

P

P

 

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

Calculated Column

Create

Edit

Delete

 P

P

P

P

P

P

Filter

Create

Save

Rename

Change Publish for

Change Owner

Lock or Unlock View

Apply Predefined Filters

Delete

Use Filtering Function

Edit Advanced Filter

 P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

P

 

By following these best practices and detailed steps, administrators will establish a robust permissions system that aligns with organizational security policies and enhances the user experience in SEI.

Note

Sensitive information, such as user roles and permissions, should be treated with utmost confidentiality and only be accessed by authorized personnel.