Before we start talking about how to create security profiles or how to assign them, let's first try to understand what security profiles are and let's have an overview on the SAP BO IDT security model.
There are two main security models that can be adopted:
The first one is to allow everyone to see everything by default; you just apply restrictions or security rules to a set of specific users to restrict their access
The second model is to deny everyone access by default; you start giving access to a specific set of users on data that they are allowed to access
The first security model is the adopted one in the SAP BO Universe. This means that by default any user who has access to the Universe will be able to see all objects available in this Universe as well as data that can be generated from a query based on this Universe. To apply security mechanism, we will create a set of security rules or restrictions known as profiles and then we will assign them to a...