Azure SQL数据安全性不会传播到数据目录 [英] Azure SQL Data Security does not propagate to the Data Catalog
问题描述
是我丢失了某些内容还是Azure Sql数据安全控件没有传播到数据目录中,从而导致
Am I missing something or does the Azure Sql Data security controls not propagate to the Data Catalog thereby putting sensitive and confidential data at risk of exposure?
我已经实现了很多数据安全协议(角色,列权限,屏蔽和行级权限等),一应俱全 不在目录中.这需要额外的工作(其中一些不能被复制)来保护目录中的数据.看来,我唯一的选择是为每个数据资产的每个组创建视图,以便不会无意间公开 数据.
I have implemented a host of data security protocols (Roles, Column Permissions, Masking and Row Level permissions, etc) and it's all for not within the catalog. This requires additional work (some of which cannot be replicated) to protect the data within the catalog. It appears the only option I have is to create views for each group for every data asset in order to not inadvertently expose data.
我对如何忽略或错过如此基本的东西感到困惑.如果确实存在,可以有人将我引导到文档中吗?
I'm flummoxed as to how something so fundamental was ignored or missed. If it does exist could someone please direct me to documentation?
推荐答案
一旦将数据提取到数据目录"中,访问控制将按此处的权限进行概述:
Once data is ingested into Data Catalog, access control is outlined by the permissions here:
https://docs.microsoft.com /en-us/azure/data-catalog/data-catalog-如何保护目录
You are correct that permissions aren't evaluated again once the data is within Data Catalog.
这篇关于Azure SQL数据安全性不会传播到数据目录的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
