Access Control for Connection

Connection roles, operations, access control rules.

Access Levels for Connections

The access control for connections vary depending on the access level. There are three types of access levels for connections:

Level
Description

Workspace

All users can access.

Protected

Only users who have been granted access can access. Workspace owners can edit permissions.

Private

Only users who have been granted access can access. Workspace owners cannot edit permissions.

Resource Roles for Connections

The following roles determine the operations users can perform on connections.

Role Name
Summary

Connection Owner

Can edit and delete connections and change permission settings

Connection User

Can execute queries and view query results and tables Can publish reports associated with the connection

Connection Viewer

Can view query results and tables

Connection Operations and Access Control Rules

Here are the operations that can be performed on connections and the roles required for each level.

Operations
Level: "Workspace"
Level: "Protected"
Level: "Private"

Create a connection.

Workspace Editor

Workspace Editor

Workspace Editor

View a list of connection names.

Workspace Viewer

Workspace Viewer

"Workspace Viewer" AND "Connection Viewer"

Edit and delete a connection.

"Workspace Owner" OR "Connection Owner"

"Workspace Owner" OR ("Workspace Viewer" AND "Connection Owner")

"Workspace Viewer" AND "Connection Owner"

Change permission settings of a connection.

"Workspace Owner" OR "Connection Owner"

"Workspace Owner" OR ("Workspace Viewer" AND "Connection Owner")

"Workspace Editor" AND "Connection Owner"

Execute any SQL Download SQL job results

"Workspace Editor"

"Workspace Editor" AND "Connection User"

"Workspace Editor" AND "Connection User"

Get SQL job results and table information.

"Workspace Viewer"

"Workspace Viewer" AND "Connection Viewer"

"Workspace Viewer" AND "Connection Viewer"

Last updated

Was this helpful?