Security design
Usually, before starting doing anything hands-on, we should collect requirements from the whole organization in order to build a matrix of user access. Moreover, we should specify what kind of permissions are granted to particular groups and users. The easiest and most transparent way is to design security according to organizational structure, that is, each department has one folder with its name in shared folders. In addition, we can create a name folder under the department folder. We recommend denying delete access in order to save content.
Let's imagine that we have just started to implement BI and the first users come from the following departments:
Business Intelligence
Sales
Product
Finance
Let's create these folders in Public Objects | Shared Folders.
After several meetings from departments, we came up with the following matrix:
![](https://static.packt-cdn.com/products/9781785884405/graphics/image_10_008.jpg)
Raw Level Access means that we should show Sales metrics of their region only. In addition, we can define privileges for groups or users. Let...