This documentation corresponds to a historical version of Yellowfin

Access the latest release, or view a list of available versions of the documentation.

Skip to end of metadata
Go to start of metadata


This section describes how roles are created and managed within Yellowfin. Roles are allocated to users and define a set of functions that the user is permitted to access within Yellowfin.

Role List

The role list is accessible via the administration panel. As a default you will have a number of pre-configured roles. These are listed below.

Sample Yellowfin Roles

When Yellowfin is initially deployed a standard set of roles is provided to you. These are:


The Yellowfin Administration role has access to database and user administration functions. These functions include managing users, groups and other configuration parameters.
It also has all the report writing and reading access supplied by the other roles below plus advanced functions, including:
SQL Reports, Public Publishing, Drill Through Reports, Discussion Admin Rights.

Public Writer

The Yellowfin Report Public writer has access for creating and editing Public reports.
All users that are to publish reports for Public use must have the Public Role to do so.
Reports created by a Yellowfin Public Writer can include drill through reports, multicast reports, and report emailing.

Report Consumer

The Yellowfin Report Consumer can only read reports that have been published to the Public repository.
Access exists to favourites, a dashboard and report viewing.

Report Writer

The Yellowfin Report Writer has access to favourites, a dashboard and Private report creation.
A Yellowfin report writer cannot produce reports with drill through, broadcast or MI capabilities.

Edit / Create Role

  1. To create or edit an existing role click either the create link or the role name that you wish to update. This will open the role edit form.
  2. Provide your role with a meaningful name and description.
  3. You can now choose to make this role Mandatory, Default, or Guest:


    This means that once this role has been created, and at least one user assigned the role, when users are deleted Yellowfin will check the role to ensure there is always at least one user with this role in the system. So if you try to delete the only user assigned the Mandatory role you will experience the following error:

    Default Role

    This means that when a user is created in Yellowfin, either by an Administrator, or through LDAP, they will be assigned this role unless otherwise specified

    Guest Role

    Guest roles are used for accessing external content.

    Tour Storyboard

    Select an existing public storyboard to present to new users from the Welcome page.

  4. Tick the functions you wish to allocate to the user. A description of these is available by rolling over the report information icon.

    Note: See Available Security Functions for a full list.
  5. Some functions will require you to provide the appropriate CRUD functionality. The acronym CRUD refers to all of the major functions that need to be implemented. Each letter in the acronym can be mapped to a standard SQL statement:


    INSERT new records


    SELECT records from the database


    UPDATE records in the database


    DELETE records in the database

    One example of CRUD access is for dashboards. If a user only has R selected they will be able to read dashboard but not create new dashboard tabs or add reports to their tabs. Whilst a user with CRUD will be able to create and delete dashboard tabs.
  6. The last option you have in the role settings is to specify what columns should be made available to users when viewing the report list.
  7. Click Save when you have completed editing to make your role available.
    Note: Yellowfin will do a function check to ensure you do not breach your license agreement.