Published 09 May 2019
You can restrict who has access to SQL Data Catalog.
The system currently supports three roles:
- Full Access - Full access to SQL Data Catalog, including administering permissions and auth tokens.
- Classify-Only - Can only perform classification, cannot edit taxonomy or add/remove instances/databases.
- Read-Only - Can only view classification and taxonomy.
Membership of these roles is controlled by using users and groups in your Active Directory.
When there are no configured users or groups, like in the initial state of the system, all users have full access.
To get started, click on the Settings, and then Permissions tab. From this page, you can add Active Directory users or groups to the list of allowed Active Directory members.
When you have multiple users and groups configured, the system will allow a particular access level if that user has that access level or there is at least one group with the required level that contains the user.