I have defined a stored process that my customer runs as an "on demand production process" using AMO. Currently everyone that has AMO can see this "report". What I want to do is hide this from all individuals except the authorized individual. I have been able to cause the report to error out for unauthorized users but I would rather them not see the report at all.
Does anyone have any suggestions on how to set up the metadata authorization
to do this?
You will be able to deny/ grant read metadata privileges to groups and hence prevent people from seeing the stored process.
You may want to also consider using operating system permissions to prevent people accessing the relevant .sas file as well. Metadata permissions may be sufficient however the metadata permissions should be seen to sit on top of other layers of permissions such as the operating system and database and hence should go hand in hand.