cancel
Showing results for 
Search instead for 
Did you mean: 

Security structure in SAC

jain06
Explorer
0 Kudos
167

Hi,

I am new in the security administration of SAC. Can someone guide me how we can start with managing security in SAC. I have been told to create a matrix for standard roles available and then create custom roles out of it.

What all we have to consider while creating a custom role and what best practices to be followed if we are starting with security in SAC.

Thanks,

Jain

View Entire Topic
Savio_Dmello
Active Participant

SAP Analytics Cloud comes with several pre-configured standard roles that provide various levels of access. To create a custom role Navigate to Role Management: Go to System -> Security -> Roles in SAP Analytics Cloud. Once Role is created, assign the necessary permissions for Content Creation, Story Viewing, Modeling, Administration, Planning, and more.

Create similar matric for custom role.

Role Name Story View Story Edit Model View Model Edit Admin Functions Data Access

AdminYesYesYesYesYesFull
BI Content CreatorYesYesYesYesNoFull
BI Content ViewerYesNoYesNoNoLimited
Planning AdminYesYesYesYesNoFull
ViewerYesNoNoNoNoLimited

Factors to be considered

 

  • Granularity: Make sure to grant only the necessary permissions. Avoid giving more access than required to maintain security.
  • Segregation of Duties (SoD): Ensure that conflicting roles (e.g., the same user being able to create and approve content) are separated to avoid errors.
  • Data Access: Make sure that sensitive data is only visible to the users who need access to it. Implement row-level security if necessary.
  • Functional Permissions: Determine if users need to create, modify, or only view content, and tailor the permissions accordingly.