Like what you see? Have a play with our trial version.

The following is a list of security functions available in Yellowfin and their associated definitions. They have been grouped into sub sections to assist you to identify how and when these functions are used.

The available roles that you see on your Yellowfin instance, will depend on your Yellowfin Suite license. If you do not see a role, then ensure that you have the proper license for it.




Report Access CRUD

Allows users to log in to Yellowfin and view, edit, create, and delete reports.

User Profile

Allows users to update their user profile.

Draft Content List

Shows a list of draft content on the Dashboard and Browse pages.


Allows users to add reports to their favorites list.

Export Report SettingsAllows users to define the export settings for a report through the save menu, rather than relying on the system default.

Export Reports to CSV

Allows users to export report results to CSV.

Error Email LinkDoes not show a link to send an email on the error page when something goes wrong.
Error StacktraceShows a stack trace on the error page when something goes wrong.

Export Reports and Dashboards to DOC

Allow users to export content items to DOC.

Export Content to PDF

Allow users to export content items to PDF.

Export Reports and Dashboards to XLS

Allow users to export content items to XLS.

Bookmarks and Snapshots

Allows users to create and use bookmarks and snapshots.

Hide Print on Reports & DashboardsHides the Print option on the Report and Dashboard pages.
External ContentAllows users to embed content from external reporting tools. This lets you embed live reports from Tableau, Qlik, and PowerBI, directly into Yellowfin.


Personal Dashboard CRUD

Gives users access to the dashboard page, and allows them to create their personal dashboard, visible only to them.

Hide Dashboard Maximize Report

Hides the maximize option on dashboard reports.

Hide Dashboard Report Menu

Hides the drop-down menu on reports on the dashboard.

Refresh Dashboard Reports

Allows users to set a refresh period on Dashboard reports.

Public Dashboards CRUD

Allows users to create and edit Public dashboards.

Disable Add Existing Tab

Prevents users from adding existing tabs from the Browse Page or the Pre-Built Tab option to their dashboard.

Show Draft DashboardsShows Dashboards being edited by other users.

Code Mode

Allows users to edit dashboard in Code Mode.
Warning: this should only be enabled for trusted developers. Learn more.

Broadcast DashboardsAllows users to broadcast dashboards on a one-off or scheduled basis. 
Subscribe to Dashboard BroadcastsAllows users to subscribe to — and unsubscribe from — existing dashboard broadcasts.


Hide Browse Page

Hides the report browse page.

Hide Advanced Report Search

Hides the advanced search on the report list page.

Hide Columns Option (Browse Page)

Hides the columns option on the report list page. Users will not be able to change the columns displayed.

Hide Report Details (Browse Page)

Hides the report details on the report list page.

Approval Administration

Allows users to see outstanding report approvals

Draft Public Reports

Allows users to see draft versions of public reports created by other users.

Report Builder

Report Types

Allows users to create freehand SQL reports, and Jasper reports.

Public Reports CRUD

Allows users to create and edit public reports.

Versioned Reports

Allows users to archive report result sets, dependent on Content Category Version History settings.

Sub Queries

Allows users to create sub query reports.

Ad Hoc Reports

Allows users to create Ad Hoc reports.

Access Filter

Allows users to set or change the access filter on reports.

Related Content

Allows users to set up co-display, drill down and drill through functionality.

CSV Reports

Allows users to write reports based on CSV files.

Advanced CSV Functionality

Allows users to perform advanced operations on CSV reports such as selecting the data source.

Custom Query Filters

Allows users to create user prompt drop down filters populated by custom SQL queries.

Min/Max default filter values

Allows users to set default values for cached filters to the minimum and maximum cached value.

Disable Cached Filter Values

Disables users from caching report filter values.

SSRS Reports

Allows users to create SSRS Reports.

Allow Freehand SQL Calculated Fields

Allows users to create Freehand SQL Calculated Fields in reports.

Disable Freehand SQL Calculated Fields Injection Check

Allows users to skip the default checking of injection tokens within Freehand SQL calculated fields, such as excess whitespace ("SELECT ", " FROM ") and unexpected semi-colons and double-dashes. This checkbox should be left unchecked for users to maximise system security (to avoid exposure to SQL injection attacks).  Only check this box for a user role when absolutely required, and ensure that your back-end database connection has the minimum required permissions on it.

JavaScript ChartsAllows users to switch on the JavaScript chart creation functionality in the report builder. (Learn more about this here.)

Save To Disk Broadcast 

Allows users to schedule broadcasts to the server’s local disk.

Report Menu

Share Private Content

Allows users to share private reports with other users. Note that if disabled, private reports cannot be shared with anyone.

Broadcast Reports

Allows users to broadcast reports on a one off or scheduled basis.

Distribute Reports

Allow users to distribute reports on dashboard tabs to other users.

Email Reports

Allows users to send an adhoc email copy of a report.

Hide Open Report

Hides the open report menu item.

Hide Report Details (Report Menu)

Hides the report details item on the report menu.

Hide SQL

Hides report SQL from users.

Multicast Reports

Allows users to broadcast reports to external users.

Multicast Access Filter Reports

Allows users to broadcast reports with access filters to external users. The credentials of the user who creates the broadcast will be used to send the report to external users.

Hide Report Refresh

Hides the report refresh menu item.

Hide Embed Links

Removes links to embed reports and dashboards using the Javascript API.

Hide External Links

Removes external direct links to reports and dashboards.


Distribute StoryboardsAllows users to distribute Storyboards to other users.
Email StoryboardsAllows users to send an ad-hoc email copy of a Storyboard.

Storyboards CRUD

Allows users to view, create, edit or delete Storyboards.

Storyboard Admin

Allows users to edit and delete any private or public Storyboard.

Public Storyboards

Allows users to make a Storyboard public.

Storyboard Global Filters

Allows users to set global filters on Storyboards.


Hide CommentsHides the comment functionality from Reports, Storyboards, and Dashboards.

Annotations CRUD

Allows users to Create, Read, Update, or Delete.


Allows users to access their timeline.


Allows users to connect to other users through their timeline.

Discussion Topics CRUD

Allows users to browse and contribute to discussion topics.

Collaboration Admin

Allow users full administration access to discussion streams, comments, and tasks both public and private.

Activity StreamAllows users to access the activity stream.
Enable TasksAllows users to see and be assigned tasks.
Personal TasksAllows users to create and assign tasks to themselves.
Public TasksAllows users to create and assign tasks to themselves and others.
System Task AdminAllows users to approve or reject the completion of system tasks.



Allows users to modify Yellowfin site parameters.

Configure Logon ID

Allows users to specify how users are authenticated.

Configure Page Format

Allows users to configure the page layout (integration settings, etc).

Configure Support Email

Allows users to set the support email address.

Header/Footer AdminAllows users to edit the header and footer on their system.


Content Super User

This role function is only visible when the Allow Content Super User setting is enabled within the Admin Console. A super user can view and delete content across the board, overriding any other config settings related to viewing and managing content. This includes the XML export of private content. Therefore, any user roles given this function have full access to all content, whether private or public, within an organisation.

When this function is included in a user role, the role cannot be deleted. Remember, changes at the role level won't take effect for a user until their next successful login.

Approval AdminAllows users to manage outstanding content approvals without having to be specified as the approver.


Allows users to import content from XML files.


Allows users to export content to XML files for backup or transfer to another system.

Folder Access

Allows users to configure report categories.

System Information

Allows admin users to view system information.

License Management

Allows users to view Yellowfin licence details and upload new license files.

Create and Edit Tags

Allows users to create and edit tags used in discussions.

Client Organisation Management CRUD

Allows users to set up and manage client organisations.

Filter Period Management

Allows users to choose which Predefined Date Filters are available.

Translate Content

Allows users to translate user entered data on dashboards, reports and views.

Themes CRUD

Allows users to manage Storyboard Themes.

Geometry Pack Management

Allows users to import and delete GeoPacks.

Background Execution ManagementAllows users to view the current background execution queue, cancel current queries, and force start queued items.
View and Field CategoriesAllows users to manage View and Field Categories from the Admin Console.
Org Reference CodesAllows users to manage Org Reference Codes from the Admin Console.
Plugin ManagementAllows users to manage plugins including Third Party Source Connections, JDBC Drivers, and Advanced Functions.
Save Corporate ImagesAllows users to upload and edit corporate images within the Image Manager.

Data Sources & Views

Data Sources CRUD

Allows users to create, edit, and delete data source connections.


Allows users to connect to OLAP data sources.

Data Source Admin CRUD

Allows users to create, edit, and delete all data sources regardless of security restrictions.

Source Filters

Allows users to create data source filters.

Database Views CRUD

Allows users to create, edit, and delete Yellowfin views.

Freehand SQL ViewsAllows users to create Freehand SQL views.

Show Draft Views

Allows users to see views being edited by other users.

Stored Procedures

Allows users to create views against stored procedures.

Force Clone Views

Removes the option to edit existing views directly - users are forced to clone views to edit them.

Hide DBMS Messages

Replaces error messages from DBMS with generic messages.

Create CSV Table

Allows users to create CSV tables within a view.

Composite Views

Allows users to create Composite Views.

Data TransformationsAllows you to access the Data Transformation module.
Skip Schema Check

Bypasses schema check when using CheckSchemaForUser functionality.

 Learn more...

The CheckSchemaForUser functionality, when enabled, runs a schema test to check if a user has permission to access tables and columns referenced by a Yellowfin report or view. 

If the Skip Schema Check function is enabled for a user, this test is bypassed, granting them access to the content. This is ideal in situations where column or table names get changed or are deleted after view creation, and the user is no longer permitted to access them. With this role, a user can access and update the column/table name at the view. 

Note that this role function is only operational if the CheckSchemaForUser functionality is enabled.

Report as a DatasourceAllows reports to be written against the results of another report.

User Administration

User Management CRUD

Allows users to create, edit, and delete user accounts.

Group Management CRUD

Allows users to create, edit, and delete user groups.

Roles Management

Allows users to create, edit, and delete security roles.

Hide profile password

Removes the password reset option in My Profile.

Disable profile email change

Stops users from changing their email address in My Profile.

Hide profile User ID

Removes the User ID option in My Profile.

Named User

Allows a user to bypass concurrent logon limitations.

Restrict Visible Roles

Restricts the Roles that are visible to a user when adding new users and groups.

Web Services

Web Services

This function is required for a user account that will be used to log in to Yellowfin web services.

Disable Mobile Access

Stops a user from accessing reports via a native mobile application.

Augmented Data Discovery
Assisted DiscoveryAllows you to access the Smart Analysis button in the report builder.
Instant InsightAllows you to access the Auto Analyze option on charts.
Instant Insight SettingsAllows you to access the insight setting button in the view builder.
Signals ConsumerAllows users to receive and explore Signals.

Allows users to configure Signal analysis settings in the View Builder.

Distribute SignalsAllows users to share Signals.
Story CRUDAllows users to view, create, edit or delete Stories.
Distribute StoryAllows users to share a published Story.
Story AdminAllows users to edit and delete any private or public Stories.

Disable Mobile Access

Stops users from accessing any Yellowfin mobile apps, if selected.

Mobile Self Invite

Allows users to invite themselves to log into the mobile app through the onboarding method.

Mobile Admin

Allows admin users to access the Mobile Access Management page to manage all mobile users via the Yellowfin platform.

Subscribe to BroadcastAllows users to subscribe to report broadcasts.