So, are you looking for advice on how to protect data on Tableau Server from outside people? Or are you concerned about how to secure data for employees so that they only see what they should see? Or both?
I want to find out how companies have their data secured at a Database level, so that the data/insights are only visible to the right data analysts via Tableau (rather than to system admins, external hackers, curious cloud employees).
So the answer is both : )
I'll share what we do. the pw/username to a datasource and the data are on one internal network with only the single user. We extract the data from that db each day and publish to Tableau Server in a publicly accessible view with only the data included that should be accessible. Access controls are done by Tableau and the data served up to to those who should have access to each level of data. Works well for our use case.
This is what you see on the Ideas viz.
That's super useful Ken, thanks a lot!
I can see that the areas of authentication and authorization are addressed in detail.
One thing I am missing is the data security part, where it mentions:
- It is possible to integrate with third-party and OS solutions for disk-level encryption (e.g. BitLocker) or file- and/or directory-level encryption (e.g. Encrypting File System or EFS) to further enhance the security of the data extract files. But these solutions generally target all data on the disk, so encryption will not be limited to Tableau Server data files. In addition, there may be a performance impact when enabling these solutions.
In terms of data encryption, what would you expect Tableau user to do (SSL aside)?
This is a very interesting approach Patrick.
So presume you don't have any data on the cloud right now, that needs to get ingested by Tableau , right?