Microsoft
70-467 · Question #81
70-467 Question #81: Real Exam Question with Answer & Explanation
The correct answer is C: Create an SSAS database role and define a Multidimensional Expressions (MDX) calculation. SSAS cube security requires MDX-based member security expressions defined within a database role to dynamically restrict which dimension members each user can see.
Question
You need to implement security in the cube to limit the sites visible to each user. What should you do?
Options
- ACreate an SSAS database role in the cube for each user and assign the sites each user can
- BCreate an SSAS server role for each user and assign the sites each user can access to his
- CCreate an SSAS database role and define a Multidimensional Expressions (MDX) calculation
- DCreate a view on the SalesTransactions table that uses the SecurityFilter and User table data
Explanation
SSAS cube security requires MDX-based member security expressions defined within a database role to dynamically restrict which dimension members each user can see.
Common mistakes.
- A. Creating one SSAS database role per user is not scalable and does not leverage MDX dynamic security, making administration unmanageable as users grow.
- B. SSAS server roles grant administrative privileges to the entire SSAS instance and cannot be used to restrict dimension member visibility for end users.
- D. A view on the source relational table restricts data at the ETL or query layer but does not enforce security within the already-processed cube, so cube users could still see all members.
Concept tested. SSAS cube dimension security using MDX expressions
Community Discussion
No community discussion yet for this question.