row level security user specific automated

Rahul_SAS · Posted 11-06-2018 09:49 AM

Hi Experts,

I have users (i.e. Managers & Employees) in the data. Need to apply row level security like a Manager should see the data for employees who falls under him/her and an Employee can see only his/her data.

This can be done using process described in below link:

https://support.sas.com/resources/papers/proceedings15/SAS1779-2015.pdf

But here, i need to make this part automated. Suppose, an Employee Moves from one manager to another manager. And there are 1000s of employees so following the above link won't be a good way.

I have another table apart from main data table which has Employee Manager relations and gets updated daily basis.

Thanks

FredrikE · Posted 11-07-2018 04:47 AM

Hi!

There will be 2 types of flow, one for defining the actual row-level-where-statement and one for the group-user-assignment.

The first one can use the "SUB::SAS....." user-driven-identities to subset data depending on user and the groups he/she belongs to.

The second one puts the users in the groups and can be achieved by using canoncical tables and SAS macros: https://documentation.sas.com/?docsetId=bisecag&docsetTarget=p1o31lg0trorn8n1rketxxe1jbr1.htm&docset...

I have created groups which names are the same as the divisions in my company and then the where-statements use this information to subset the data, like: "division in (SUB::SAS.Identitygroups)"

Hope this can guide you in the right direction 🙂

//Fredrik

row level security user specific automated

Re: row level security user specific automated