When a user logins into One Model, they will be taken to an overview page. Dependent on their level of access, they may see a number of icons on the top banner. These icons represent the high-level tools that a user may or may not have access to dependent on their role in the organization.


Explore – This is One Model’s query tool that allows users to create visualizations and tables of data using Metrics and Dimensions. These queries can be pinned as Tiles and added to Storyboards. This tool also allows users to create their own Metrics if they have the permission. Explore is generally used by Dashboard Admins, Analysts and HRBPs to investigate the data.

The Application Access Permission that allow users to use the Explore tool is:

  • CanExploreData

Allowing users to create, edit, and delete Metrics are controlled by the permissions below. It is important for Dashboard Admins to have access to these permissions to create and edit Metric definitions.

  • CanCreateMetric

  • CanEditMetric

  • CanDeleteMetric

Storyboards (aka Dashboards) –  This tool allows users to access a group of Tiles that have been set-up by a user that has Application Access Permissions to Create Storyboards and access the Explore tool. While the ability to view and drill through Metrics should be granted to anyone that has Explore capabilities, they will also be needed for users for Storyboards.

Application Access Permissions for Dashboard Admins include:

  • CanCreateDashboard

All users should have the Application Access Permissions below. These permissions will work in conjunction with Data Access Permissions to limit the data the user can see.

  • CanFilterDashboard

  • CanViewDashboards

  • CanViewMetrics

  • CanViewDimensionDetails

  • CanViewDimensions

If the user should be able to see the details behind the Metrics, they should also have the following permissions:

  • CanDrillthroughMetric

  • CanViewDrillThroughColumns

Exports – Tables (aka List reports) can be exported to Excel. Dependent on the size of the data being exported it may take some time for the servers to create the file export. Files that have been requested for export will be located under the Exports section of the site.

Data – Users that have access to manage the data configuration in the site will see this area. Loads, Sources, Destinations, Augmentations and Processing Scripts are found here.

Application Access Permissions that control access to Loads include:

  • CanAccessDataLoads

  • CanModifyDataLoads

Application Access Permissions that control access to Sources include:

  • CanConfigureDataSource

  • CanCreateDataSource

  • CanDeleteDataSource

  • CanEditDataSource

  • CanRunDataSource

  • CanViewDataSources

  • CanUploadData

Application Access Permissions that control access to Destinations include:

  • CanEditDataDestination

  • CanRunDataDestinations

  • CanViewDataDestinations

  • CanViewDataDestinationsHistory

Application Access Permissions that control access to Augmentation include:

  • CanAccessAugmentations

Application Access Permissions that control access to Processing Scripts include:

  • CanViewAndEditProcessingScript

Account – Users can change passwords and log out of the site here. Users with the permission to Proxy as another user will access that functionality via Account > Proxy as User.

Admin – Users that have access to manage the site, users and role security for the site will see this area. Under this area, there will be general management of the site (Company), user settings (Users), role settings (Application and Data Access Roles), drill through columns (Drill Through Columns), importing / exporting configuration (Import/ Export Configuration), name overrides (Table & Column Label Editor), data quality notifications (Site Validation) and color and logo management (Branding).

Application Access Permissions that allow users to access to general settings: 

  • CanEditHomePageDashboardTemplate

  • CanConfigureCompany

  • CanEditCompanyValueFormat 

  • CanResetPasswords

  • CanCreatePgpConfigurations

  • CanDownloadPgpConfigurations

  • CanConfigureWhitelistIp

  • CanCreateWhitelistIp

Application Access Permissions that allow users to create/ edit users:

  • CanViewUsers

  • CanCreateUser

  • CanEditUser

  • CanEditUserRoles

  • CanDeactivateUser

  • CanUnlockUser

  • CanProxyUsers

Application Access Permissions that allow users to create/ edit roles:

  • CanCreateRole

  • CanEditRole

  • CanEditRolePermissions

  • CanEditRoleMetrics

  • CanEditRoleUsers

  • CanDeleteRole

  • CanViewRoleDetails

  • CanViewRoles

  • CanEditRoleDashboards

  • CanEditRoleDimensions

  • CanEditDataAccessRoles

Application Access Permissions that allow users to edit Drill Through Columns: 

  • CanEditDrillThroughColumn

Application Access Permissions that allow users to Import/ Export configuration: 

  • CanImportExportConfigurations

Application Access Permissions that allow users to change the Table & Column Labels:

  • CanEditDataWarehouseTableAndColumnLabels

Application Access Permissions that allow users to view and manage data quality notifications: 

  • CanViewSiteValidation

Did this answer your question?