none
Azure Data Catalog allows any users to register objects unless stated they can't RRS feed

  • Question

  • We have found that users which are on our Active Directory but have not been added to the catalog security in anyway can see and successfully use the 'Publish' button to register their own objects to the catalog.

    To remove this permission you appear to have to add them to the 'Catalog Users' in 'Settings' and then uncheck 'Register'. This then prevents register as well as the ability to see the 'Publish' button in the catalog.

    Am I correct in saying this is the way to prevent any user in the AD from registering objects? Seems like a strange way round for security to be if you aren't added to the catalog you can register but if you are added and permission removed you can't.

    Wednesday, June 5, 2019 12:49 PM

All replies

  • Thanks Matt , Can you please let us know which edition ADC are you using ? Is this the Standard or the free edition ? 
    The Standard edition has some extra security features .

    https://docs.microsoft.com/en-us/azure/data-catalog/data-catalog-get-started


    Thanks Himanshu

    Wednesday, June 5, 2019 10:06 PM
  • Hi Matmudd,

    In additional to Himanshu response;

    The default behavior of the catalog is to allow any user to register any data source, and to allow any user to delete any data asset that has been registered.

    The management capabilities included in the Standard Edition of Azure Data Catalog provide additional options for taking ownership of assets, restricting who can discover assets, and restricting who can delete assets.

    For more details, refer "Register data assets in Azure Data Catalog".

    Hope this helps.

    Thursday, June 6, 2019 9:02 AM
    Moderator