At the moment, }CubeSecurity, }DimensionSecurity, }ElementSecurity_XXX, and even }CellSecurity, blank is NONE, or no access.
However, for }ApplicationSecurity, it is requiring administrator to populate NONE in order to make the application no access to end users.
This is quite troublesome for larger models, where it might have more than 6 folders, and maybe 3 layers per root folder, and having over 100 security groups, populating this grid of data takes a long time and unnecessary if making blank as NONE.
Right now on some model, just to populate NONE already taking over 3 hours of running time (no special logic) because the model has many applications built on it and require security control over it.
|Who would benefit from this IDEA?||Everyone|
How should it work?
Should make blank means NONE for }ApplicationSecurity, if require to cater for models that already assumed blank <> NONE, maybe provide another parameter on tm1s.cfg allowing administrator to choose how they want }ApplicationSecurity to behave.
|Priority Justification||Security Configuration is important, but should able to do this smarter and less troublesome, right now spending over 3 hours to populate this cube is really unnecessary and also blocking other schedule jobs from running|
|Client Name||Many customers|
|IBM's success depends on gathering feedback from customers like yourself. Aha Ideas Portal is the third party tool through which IBM Offering Managers gather feedback from customers such as yourself.|
|IBM is a global organization with business processes, management structures, technical systems and service provider networks that cross borders. As such, the information collected through Aha Ideas Portal (Customer Name, Customer Email Address) will be stored by them in the United States, and handled only as per IBM's instructions and policies. Your data (Name and Email Address) will NOT be shared with other IBM customers.|
|In order to safeguard your information in Aha, do not leave your workstation unattended while using this application, log off after using it, and print only if necessary. If you need to make a hardcopy, remember to pick up the print-out immediately, keep it under lock, and destroy it immediately when no longer needed.|
|NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "email@example.com" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions|