Azure数据目录允许任何用户注册对象，除非声明他们不能 [英] Azure Data Catalog allows any users to register objects unless stated they can't

问题描述

我们发现，无论如何，我们的Active Directory上但尚未添加到目录安全性的用户可以看到并成功使用"发布"按钮将自己的对象注册到目录。 / p>

要删除此权限，您似乎必须将它们添加到"设置"中的"目录用户"，然后取消选中"注册"。这样就可以防止注册以及查看目录中"发布"按钮的能力。

我是否正确地说这是防止AD中的任何用户注册对象的方法？看起来像是一种奇怪的安全方式，如果你没有添加到你可以注册的目录中，但如果你被添加并删除了权限你就不能。

解决方案

谢谢Matt，您能否告诉我们您使用的ADC版本？这是标准版还是免费版？ 

标准版有一些额外的安全功能。

https：/ /docs.microsoft.com/en-us/azure/data-catalog/data-catalog-get-started

We have found that users which are on our Active Directory but have not been added to the catalog security in anyway can see and successfully use the 'Publish' button to register their own objects to the catalog.

To remove this permission you appear to have to add them to the 'Catalog Users' in 'Settings' and then uncheck 'Register'. This then prevents register as well as the ability to see the 'Publish' button in the catalog.

Am I correct in saying this is the way to prevent any user in the AD from registering objects? Seems like a strange way round for security to be if you aren't added to the catalog you can register but if you are added and permission removed you can't.

解决方案

Thanks Matt , Can you please let us know which edition ADC are you using ? Is this the Standard or the free edition ? 
The Standard edition has some extra security features .

https://docs.microsoft.com/en-us/azure/data-catalog/data-catalog-get-started

这篇关于Azure数据目录允许任何用户注册对象，除非声明他们不能的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！