Skip to Content

How to handle Users data access rights in CT_FACT_DATA table for FC10

Hello team,

Which is the better way to handle data access ?

I use a BI tools such Cognos / Tableau / PowerBI to access to fact table stored in SAP Hana, and I would like users logged through this BI tools can only see their data scope as defined in SAP FC.

I know with SSAS cube it's handle with UDF for security, but is there a same things when using fact table ?

Maybe we should use a dimension and filter on it ?

Advice appreciate



Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Feb 06, 2018 at 01:51 AM

    Hi Vivian,

    If the question is about ct_fact_data itself, then I'm afraid there isn't any tool in place to handle user security according to DAG in FC.

    But if it is about the Hana modeling views deployed through Cube Designer based on the ct_fact_data, then there is:

    Check FC10.1 installation guide section 9.4.3 Configuring SAP HANA roles to inherit the Financial Consolidation security on data.

    Best Regards,


    Add comment
    10|10000 characters needed characters exceeded

  • Feb 27, 2018 at 10:15 AM

    Hi Vivan.

    There is some various possibilities :

    - Use the standard "static" export of Cube Designer, as stated in standard configuration - in that case SAP FC Data access Rights are set for SAP FC users only,

    - Use Dynamic role based on external data with a customization, which allows to handle BI users rights. this customisation can be based on SAP FC Security to use it as a central system for security Management, or any other system - this works fine and has limited performance impact with balanced seurity design

    Add comment
    10|10000 characters needed characters exceeded