The user group object has the following attributes:

Security filters

The POV security filters allow to filter the dimension members that are shown in the POV bar. With this functionality users can be restricted to see only their own entity, product group, cost center, etc. The POV security filters, filter only the POV bar and do not filter members that are defined in lists. This means that if a user that is restricted to the Europe entities opens a multi-column report with Europe and Asia entities on the rows, it can still see both entities. In this case the Report Authorization module should be used to prevent the Europe user to see this global report. The POV security filters can be found by clicking on the drill button of a user group.

Parent user Group

By specifying a Parent User group the Group inherits all security filters from it's that Parent user Group. The following example shows the security filter for the group 'NoEurope' that has Z_BASE configured as a Parent User Group.

The gray lines are inherited from Z_BASE and cannot be edited, The black lines are security filters that belong specific to this group.
Parent user groups simplify the administration of security filters by setting global filters only once and not for every group individually.

Report Authorization

The report authorization module (security matrix) allows you to define which user groups can access certain reports trough the menu. A user that has no access to a specific Menu item will not see that report in the menu or in a storyboard.
The security matrix can be accessed trough the Security and Navigation ribbon in the CXO-Design Studio.