There were two security levels: one for each object, and one for a user. As long as the user security level was greater than or equal to the object security level they could see that object on the query panel. It wasn’t very flexible, but useful in certain cases.
Object level security is to hide (not to show the particular objects in Query panel) the some of the objects to Particular end users. You can select a security level which restricts use of the object to users with the appropriate security level. simply specify an access level for each object within a universe. Only groups/users that have access level equal to or higher than that level gain access to that particular object.
You can assign the following security access levels:
• Public
• Controlled
• Restricted
• Confidential
• Private
The settings were public, controlled, restricted, confidential, and private. These are just a place holder for the developer perspective and the values were stored in from zero (0) to four (4) in repository. As long as a user had a security level that was greater than or equal to an object security level, that user could see that object.
• 0 – PRIVATE (Only users with the user profile of Private can see and use the object)
• 1- CONFIDENTIAL (Only users with the user profile of Confidential or higher can see and use the object)
• 2- RESTRICTED (Only users with the user profile of Restricted or higher can see and use the object)
• 3 – CONTROLLED (Only users with the user profile of Controlled or higher can see and use the object)
• 4 – PUBLIC (All users can see and use the objects)
If you assign Public to one object, then all users can see the objects and use the object. If you assign Restricted, then only users with the user profile of Restricted or higher (Confidential & Private) can see and use the object.
If your Object level security for that universe is Private, you can see all the objects. if you have Public for that universe then you could not see the other 4 restricted (controlled, restricted, confidential, and private) level objects
By default all objects are set to Public, if you need any specific security, then it has to be set for each object in object properties.
Once all your objects security has been set in universe designer, then you need to create groups (controlled, restricted, confidential, and private) in CMC and have to add the users to the respective groups and assign the access level.
Please feel free to pass on your comments.
DWBI castle 
Hi,
Our bo system is 4.2 sp 2 p5
We have analyst and viewer user groups. All people, have analyst authority, can see all universes. I only restricted user security to folder. Not on universe. Analyst authority person see this : http://www.dosya.tc/server10/77z8gn/universes.PNG.html
How can I set universe security according to folder levels ?