12-11-2015 07:02 AM
Anyone knows how to hide users folders tree on building a query in SAS Visual Analytics? .
I don´t want the power users sees the tree of users folders registered in the platform.
Thanks in advance!
12-15-2015 02:08 PM
You might do better posting this to the Systems Admin community, as this is a metadata permissions matter and not specific to SAS VA. Any user will see folders based on what Group(s) they are a member of and the permissions granted to those Groups.
That also means that with SAS default permissions set if they go to the 'User Folders' top level metadata folder then they will see a list of the known users; that is because the group 'SASUSERS' (which every user has to be a member of) has to have 'Read Metadata' permission on the 'User Folders' folder. This has to be that way because if 'SASUSERS' group were to be denied 'read metadata' then no-one would see their own folder tree either [explicit deny of 'read metadata' would cause that]. However, users should not be able to see the subfolders that exist for the other users - they would be able to see their own 'My Folder' and everything in it, but nothing for other users. If they are seeing the subfolders then they have too much permission granted to them.
You say you are talking about 'power users' - I assume they are not in the 'SAS Administrators' group but are in 'Visual Analytics Users' or maybe you've added your own 'VA Super Users' and given them the role of 'Visual Analytics: Administration' or something like that?
If they are 'SAS Administrators' then not only will they see everyone's folder details but the'll be able to save stuff there too (a really bad idea!) so I'd recommend removing them from that group and making a more specialised group with the permissions and roles they require, and put them in that group instead.
If this doesn't make sense then I suggest discussing it with whoever does SAS administration for your site - or if you are that person but haven't had to deal with this topic before, then you can read about access management concepts in this document http://support.sas.com/documentation/cdl/en/mcsecug/64770/HTML/default/viewer.htm#about.htm
If you're still not clear then I suggest resolving this item and posting to the Administration community instead.
Need further help from the community? Please ask a new question.