Hello,

Anyone who has any idea on limiting number of datarole created please
give help. Here is my problem.

Our web application uses 1 NT account to connect (by COM) to database
server. The connection is made with datarole based on which application
user is. We have trouble on creating new role when the number of them
become large.

On searching for this, we run into User Defined Function. But we get
another problem with the MDX function UserName, because the application
only uses 1 NT account, and will return the same all the time.

I try to work around by using calculated member to pass user
information to UDF, and set the Allowed Members field to this
{StrToSet(myUDF(RoleId, "DimId"))}
(where RoleId is a calculated member)
but I got an error "Error occurred while processing security for cube
'<cube name> (Security error)" on save (close) the Edit database role
dialog.

I debug by left out the calculated member and set the field to this
{StrToSet(myUDF("DR_chau", "DimId"))}
and things work.

1. Can I put calculated embers to Allowed Members fields?
2. Is there any approach to this datarole stuff without using UserName
function?

I would highly appreciate any advise/docs.
Thank a lot.

Chau Huynh

Hi,

Have a look at this webcast:

Support WebCast: Dynamic Dimension Security in Microsoft SQL Server 2000
WGID:439
ID: 828343.KB.EN-US

This Support WebCast session discusses how to implement dynamic Dimension
Security in Microsoft SQL Server 2000 Analysis Services. It reviews some
popular approaches to use during implementation. It also talks about
common issues that may occur and how to resolve them.

HTH,
Bas

"This posting is provided "AS IS" with no warranties, and confers no
rights."

Hello,

In fact, I studied the WebCast on this stuff, and run into UDF. But our
system uses only 1 NT account for all connections. That's the problem
prevent us from dynamic security (not to use UserName function).
Now I see that my approach by using calculated members is impossible,
too, because of no context for calculation on connection.

I just hope anyone having similar situation (1 NT account) would
suggest a workaround on limiting the number of data role created.

Thanks so much for you help,
Chau Huynh