Template Security 
You use the Security screen to assign roles with read or write permissions to your query templates and display templates.
Features
If a role is assigned as a writer role, it is automatically a reader role as well.
You can prevent users from overriding query template properties when a template is executed. If you are assigned to the SAP_XMII_DynamicQuery role, you can include a query in the URL; therefore, a query template is not required. You can also override all query properties. If you are not assigned to the SAP_XMII_DynamicQuery role, you must use a query template. You cannot override the server and mode properties, but you can override other properties.
For more information about SAP MII roles, see User Management.
Restricted Property Override
If you select the Restricted Property Override checkbox on the General template category screen for a query, only those properties in the table below can be overridden. This is also true for users assigned to the SAP_XMII_DynamicQuery role.
Property | Query Type |
AllowFuture | Aggregate Xacute Tag |
Base | template |
ColumnAlias.x | OLAP |
Debug | All |
Duration | All |
DurationUnits | All |
EndDate | All |
EndDateMappedParam | Xacute |
Folder | template |
Group | SQL Tag |
IntervalCount | Xacute Alarm XML SQL OLAP Tag |
MappedParamTarget.x | Xacute |
Mask | Tag template |
NullAsZero | OLAP |
Param.x | All |
Resolution | Tag |
Schedule | Xacute Alarm XML SQL OLAP Tag |
StartDate | All |
StartDateMappedParam | Xacute |
Time | All |
TimePeriod | All |
TotalizerFactor | Tag |
Trace | All |
Transform | XML |
XParamName.x | All |
XParamValue.x | All |