Consider the following scenario:
- There is a role definition which has full control permission on a Microsoft SQL Server Analysis Services 2008 R2 (SSRS 2008 R2) database.
- There is a second role definition that has limited access rights to a cube of the SSRS 2008 R2 database.
- A user is granted both roles.
- The user tries to view the cube.
In this scenario, the user can view only some data of the cube. The expected behavior is for the user to have full control of the cube's data. The limited access rights of the second role definition override the full control permission of the first role definition incorrectly.
Cumulative update information
SQL Server 2008 R2 Service Pack 1
The fix for this issue was first released in Cumulative Update 5. For more information about how to obtain this cumulative update package for SQL Server 2008 R2 Service Pack 1, click the following article number to view the article in the Microsoft Knowledge Base:
Cumulative Update package 5 for SQL Server 2008 R2 Service Pack 1
Because the builds are cumulative, each new fix release contains all the hotfixes and all the security fixes that were included with the previous SQL Server 2008 R2 Service Pack 1 fix release. We recommend that you consider applying the most recent fix release that contains this hotfix. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
The SQL Server 2008 R2 builds that were released after SQL Server 2008 R2 Service Pack 1 was released
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
For more information about permissions and access rights in Microsoft Analysis Services, visit the following MSDN website: