Access control in Data Management (DMS) is used to manage user permissions for viewing and accessing databases and instances in DMS. This feature helps you ensure data security within your organization.
Background information
Note In DMS, database permissions include Query, Export, and Change. If you have one of
these permissions on a database, you are authorized to access the following information
in DMS:
- Information of the database. You can search for the database in the search box in the upper part of the left-side navigation pane or in the top navigation bar of the DMS console. Alternatively, you can search for the database in the "Select the databases, tables, or columns on which you want to apply for permissions" field on the Ticket Application page. You can query the data in the database only when you have query permission on the database.
- Information of the instance to which the database belongs. To view the information of other databases in this instance, you must have permissions on other databases.
Types of metadata access control
You can manage metadata access control on the following objects:
- Users: Users can view and access only databases on which they have permissions.
- Databases: Databases can be accessed only by users that have permissions on them.
- Instances: Instances and all databases that belong to the instance can be accessed only by users that have permissions on the instances.
Before and after access control is enabled
Whether access control is enabled | Description |
---|---|
Disabled | Regular users can view and access all databases and instances. |
Enabled | Regular users can view and access only the databases and instances on which they have one or more permissions. |
Procedure
This example shows the differences in the permissions of a regular user before and
after access control is enabled.
Note The
poc_dev
and poc_prod
instances in the following steps are for test purpose.