SAP Datasphere: Implementing Row-Level Security using Data Access Controls
Author: Geetha Madhuri Bobbili
LinkedIn Profile: https://www.linkedin.com/in/geetha-madhuri-bobbili-971268184/
Data access controls offer the ability to apply row-level security to your objects. When applied to a data layer view or a business layer object, users will only see authorized rows based on specific criteria, ensuring their access is restricted appropriately.
Let’s look at a simple business scenario:
Isabella: Isabella holds the role of a business analyst in the China sales department. When using SAP Analytics Cloud to build a story based on the Sales Org View, she has specific access. Isabella is limited to viewing only the Sales Organization China and Product eBike E101 data.
John: As a data modeler in the German sales department, John uses SAP Datasphere to create business models. He combines the Sales Org View with other data sources. When he previews data, he can only see information related to the Germany Sales Organization and the M525e Product.
Olivia: She is a business analyst in the US sales department. When connecting to SAP Analytics Cloud to create a story using the Sales Org View, Olivia’s access is limited. She is able to see data only from Sales Organization US and Product C900 BIKE.
The Permissions table is shared with the IT space.
Creating a Data Access Control in IT Space:
To establish data access controls and determine the criteria for displaying data to users, it’s essential to have the Space administrator role.
Applying Data Access Control to Sales Org View:
Consuming SAP Datasphere Analytic Model in SAP Analytics Cloud:
I hope this blog has helped you understand why and how we use Data Access Controls to apply row-level security to the data in SAP Datasphere.