The security management can be separated into three logical units
the user accounts
the user profiles
the database security profiles
A user account is an authorized username/password, the Board server authenticates and accepts connections from known user accounts. Each user account must be associated to a user profile.
A user profiles defines a set of privileges and authorizations, such as the Board license level (such as Developer, Power User, LitePlus or Lite), the list of accessible databases and capsules and the database security profile.
A database security profile is a set of privileges and authorizations on the database, defining for example the authorization to modify the database structure, the authorization to view or modify InfoCubes and the range visibility on the database (for example it is possible to define a filter that limits visibility on the database to a specific Business Unit, to a set of Customers or to some Cost centres).