SQL Server 2000 AS Security in Cube creation.

[johnem]

Dear Listers,

My understanding is that to create an Analysis Services database or cube and to be able to process a cube requires the user be an OLAP administrator on the local server. Once a user is a local OLAP administrator they have access to all cubes on the local server.

I would like a user to have the ability to create and process cubes within specified databases. That is, if there are multiple databases created on a local server, user permissions can be defined that enabled a user to create and process cubes within authorised databases but would not be able to create and process cubes in other databases for which authorisation did not exist.

This level of security is similar to the SQL Server db_ddladmin fixed database role security level. That is, a db_ddladmin authorisation allows a user to create/delete/alter tables in a database for which they are authorised but not databases for which they do not have db_ddladmin authority.

Is there a way to achive the required functionality with SQL Server 2000 Analysis Services?