Authentication methods

Cube supports the following methods to authenticate requests to APIs & integrations. Usually, an API supports authentication via one of these methods:

User name and password (e.g., used by the SQL API).
Kerberos and NTLM (e.g., used by the DAX API and MDX API).
Identity provider (e.g., used by the Cube Cloud for Sheets).
JSON Web Token (e.g., used by the REST API).

Authentication flow

Regardless of the method, the authentication flow includes the following steps:

User identity information (e.g., password or access token) is passed to Cube.
Cube validates the identity information.
Cube associates the API request with a security context.
The security context is used to configure member-level security and row-level security as well as set data access policies.

Access control Name and password