In any project, searching for the security options and configuring them correctly can be a time-consuming task. That’s not the case with SAP Analytics Cloud Planning. Here, you have access to an easily manageable security solution—the Data Access Control—which is configured at a dimension level.
Data Access Control allows users to see only the planning model data relevant to them—controlling security by restricting user access for dimension members. The users can only see the available data through Data Access Control when they open the story.
Here are the steps to create a Data Access Control in your project:
Firstly, you need to make the Data Access Control available for the relevant dimension. This is done by visiting Model Preferences in the model or Dimension settings in the dimension.
In Model Preferences, the dimension to be controlled must be activated with the Data Access Control property in the Access and Privacy tab.
Alternatively, you can set Data Access Control within Dimension Settings. There, you’ll see the Read and Write columns.
The Write column is specific to planning models which allow users to create values in planning stories.
The Read column allows you to see the data in the stories.
It is possible to define teams or users for the Data Access Control in any row of dimension members. The control users can be selected while clicking on the assignee symbol which appears when you click on the row.
A popup window will then appear where the team or usernames can be searched and selected.
To make the data access control applicable, the assigned user should not be in the admin group.
After selecting the users, they will appear in the corresponding rows. Now, these dimension members will be restricted—only able to be viewed or edited by these specified users.
The team and user assignments will be among the members of the cost center (displayed in the rows). Users assigned to the read column will be restricted to viewing these members of cost centers in stories. Users assigned to the write column can also write or edit the data for these members of cost centers in planning scenarios.
Before the Data Access Control adjustment, the users were allowed to see all data.
After the Data Access Control adjustment, the users are restricted to see only the data relevant to them.
Using this enhanced feature, businesses will find adoption of a cloud planning solution much easier, both in terms of configuration and also compliance. By securing and restricting data to ensure that it is only accessible to the appropriate users, the business lowers its exposure to risks associated with data theft, mismanagement or inaccuracy.
In addition, IT Administrators and data security staff have a lower workload when it comes to managing and controlling access—something which, in the past, was only guaranteed in more mature on-premise systems.
If you’d like to learn more about the possibilities available using Data Access Controls in your next project, or have questions about any aspect of SAP Analytics Cloud, we’d be happy to help.
REFERENCES
https://www.sap.com/products/cloud-analytics/features/planning.html
https://community.sap.com/topics/cloud-analytics