Rights with Impact on Jedox Integrator

image_pdfimage_print

This article describes the implications of basic rights that are specific to Jedox Integrator. The basic rights are described in detail the article Administration of User Rights.

Jedox Integrator is tightly connected with the Jedox OLAP Server, which is uses for storing the Integrator projects. This allows the definition of user rights at the project level. It also implies that administration of rights in the Jedox OLAP Server has direct influence on the behavior of Jedox Integrator. The user rights in Jedox Integrator are set on the server level and are therefore independent from the user’s front end (e.g. Jedox Web Integrator, Scheduler, Command Line Client, SOAP WebService API)

General rights for Jedox Integrator

The following table lists the minimal OLAP object rights for the different possible operations in Jedox Integrator. These rights have to be assigned at the role level for the user.

 

database

cube

dimension

dimension_element

cell_data

ste_etl

Test components, preview data, execute loads or jobs, get execution info

R

R

R

R

R

N

Read projects and components, display flow graph

R

R

R

R

R

R

Create and edit projects and components

R

R

W

W

W

W

Rename projects and components

R

R

R

W

W

W

Delete projects and components, remove executions

R

R

R

D

N

D

Specific rights for Jedox Integrator projects

It is possible to define rights at the project level for Integrator (ETL). With the appropriate authorization, they can be assigned or changed for projects in the Integrator Manager with a right-click (see section “Required access rights for controlling Jedox Web objects” in article Specific Rights Jedox Web).

The following settings are available:

D (Delete)
(=full control)

Users have full access to the project. They are allowed to edit and delete the project and its components.  Furthermore, they can execute and monitor loads or jobs and perform a data preview.

W (Write)

Users are allowed to edit the project and its components.  Furthermore, they can execute and monitor loads or jobs and perform a data preview.

R (Read)

Users are allowed to display the project and its components.  Furthermore, they can execute and monitor loads or jobs and perform a data preview. Also, they can execute loads or jobs of the project from a Web Spreadsheet (via a Macro).

N (None)

Users have no access to the project. It is not displayed in the Integration Manager.

Note that rights on project components (e.g. extracts) are not supported. Furthermore, as there are no project groups available, there is no inheritance of user rights.

In order to create Jedox Integrator Tasks, additional authorization for Scheduler is required (rights object ste_scheduler).

Display of Integration Manager in Jedox Web

In Jedox Web, users can only see the Integration Manager component if they have at least the “R” rights for the rights object “ste_etl”. They can edit the project and create new projects if they have at least the right “W”.

Even without rights on “ste_etl”, the execution of jobs and monitoring is possible from other Integrator clients, e.g. Integrator Command Line Client or Jedox Web Spreadsheets. See also Accessing the SOAP API of Jedox Integrator (ETL) from PHP.

Drillthrough

For drillthrough data retrieval only, “D” rights on the specific rights object “Drillthrough” is required. Note that for creation of drillthrough data in a cube load, no rights on rights object “Drillthrough” is required.

image_pdfimage_print
Was this post helpful?
NoYes (No Ratings Yet)
Loading...