locked
Project Crescent Security? RRS feed

  • Question

  • Hi

    I am doing some reading about Tabular models and using Project Crescent as a reporting tool for this.  

    From what I can see, The tabular model has a good security model with roles possible to limit data based on the user.  You can even do more advanced security as shown by Teo Lachev (http://prologika.com/CS/blogs/blog/archive/2011/09/28/bism-tabular-dynamic-data-security-over-bridge-table.aspx).

    This is great, but according to the BOL, to connect from Project Crescent to a BISM Tabular model you will need to create a shared user that needs to have sysadmin permissions.

     

    Connections that originate from SharePoint to a tabular model database on an Analysis Services server are made by a shared service on behalf of the user requesting the data. The service making the request is either a PowerPivot service application or a Reporting Services service application. In order for the connection to succeed, the service must have administrative permissions on the Analysis Services server.

     

    http://msdn.microsoft.com/en-us/library/hh230972(v=sql.110).aspx

    So from my understanding, Project Crescent will not use the security roles or permissions?

    Wednesday, October 12, 2011 2:02 PM

All replies

  • >So from my understanding, Project Crescent will not use the security roles or permissions?

    No. Crescent (aka Power View) passes the actual user to Analysis Services.  The connections opened will indeed apply the end user's security context.

     

    HTH,
    Robert


    Robert Bruckner   http://blogs.msdn.com/robertbruckner
    This posting is provided "AS IS" with no warranties, and confers no rights.
    Friday, November 18, 2011 4:31 PM