Security Default

[jim wood]

Chaps,

As most of you are aware that the default security setting in TM1 is Write. The model I'm working on needs to be read only unless otherwise defined. Do you know if there is a way to change the TM1 default security setting. I can't find anything in the list of CFG commands in the Ops guide,

Jim.

[tomok]

Chaps,

As most of you are aware that the default security setting in TM1 is Write. The model I'm working on needs to be read only unless otherwise defined. Do you know if there is a way to change the TM1 default security setting. I can't find anything in the list of CFG commands in the Ops guide,

Jim.

There is no way to change the default in TM1, at least that I know of, except to actually create security on the object, be it cube, dimension, or element, and then make everyone's rights READ. It's not as cumbersome as you might think if you do this. In all my models I always create a group called Everyone and I make all users a member of this group with a rule on the }ClientGroups cube. I then create a }CubeSecurity cube and grant READ, once again via ruile, to the group Everyone for all cubes that all users should see. If necessary, I do the same for }DimensionSecurity and also }ElementSecurity if called for. Then you can create other groups to give out the WRITE access when needed.

[jim wood]

That's pretty much is as I understood things as well, but you don't get if you don't ask.

[lotsaram]

The ReadOnlyUser field in the ClientProperties cube might be useful in this case. Regardless of group membership and security settings if this field has a value of 1 then the user won't be able to write (to any cubes).

I don't really know why but this feature seems to be very seldom used but for some models it is quite handy.