Security
In the Discovery Hub architecture, the ODX storage is the central data repository for the entire organization. Employees are different, also in the data they should have access. For this reason, you can set up permissions to control access to data on the ODX storage in TimeXtender.
You can define roles, add users and groups to these roles, and grant/deny the role access to data. You create the permission setup with rules, just like when you select data, set up incremental load etc. Each rule contains criteria for which schema, table and column names it applies to and whether the role should be granted or denied access.
Note: Azure Data Lake data storages support granting access on the table level, while SQL Server data storages support the column level as well. If you grant/deny access to a column, TimeXtender will ignore the rule if the security setup is deployed to an Azure Data Lake data storage.
Adding a Role
To add a role
- Right click Roles, click Add Role. and follow the instructions in the wizard.
Managing Role Members
Naturally, you can add and remove members from a role after it has been created.
To add a member, follow the steps below.
- Right click the role and click Manage members...
- In the search box, enter the name of the user or group you want to add and click Search. If you click search without entering a search term, everything is listed.
- Select the users and groups you want to add as members and click Add >.
To remove an existing member, follow the steps below.
- Right click the role and click Manage members...
- Select the member in the list to the right and click < Remove
Managing Permissions
As mentioned above, permissions are based on rules, that can also be added and removed from a role after it has been created.
To add a permission rule, follow the steps below.
- Right click the role and click Manage Permissions...
- Select a data source, enter criteria for Schema, Table and, if your data storage is an SQL Server, Column and then click Search. The tables/columns are listed under Results.
- Click Grant Matches or Deny Matches to grant/deny access to all tables/columns that match the criteria
or
select individual tables/columns and click Grant > or Deny > to grant/deny access to specific tables/columns.
To remove a permission rule, follow the steps below.
- Right click the role and click Manage Permissions...
- Select a rule in the list to the right and click < Remove.
0 Comments