Restrict User Access in Azure Synapse Analytics Dedicated SQL Pool for IndianAnalyst Role
Question
You work in Azure Synapse Analytics dedicated SQL pool that has a table titled Pilots.
Now you want to restrict the user access in such a way that users in ‘IndianAnalyst' role can see only the pilots from India.Which of the following would you add to the solution?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E.Correct Answer: D
Row-level security is applicable on databases to allow fine-grained access to the rows in a database table for restricted control upon who could access which type of data.
Option A is incorrect.
Table partitions are generally used to group similar data.
Option B is incorrect.
Encryption is used for security purposes.
Option C is incorrect.
Column level security is used to restrict data access at the column level.
In the given scenario, we need to restrict access at the row level.
Option D is correct.
In this scenario, we need to restrict access on a row basis, i.e only for the pilots from India, there Row-level security is the right solution.
Option E is incorrect.
Sensitive data exposure can be limited by masking it to unauthorized users using SQL Database dynamic data masking.
References:
To know more about Row-level security, please visit the below-given links:
The correct answer to this question is D. Row-level security.
Row-level security (RLS) is a security feature in Azure Synapse Analytics dedicated SQL pool that allows database administrators to restrict access to specific rows in a table based on a user's role or permissions. This feature is used to limit the rows that users can view, update, or delete in a table.
To implement RLS in this scenario, you would create a security policy on the Pilots table that filters the rows based on the user's role. The security policy would specify that users in the ‘IndianAnalyst' role can only access rows where the Country column equals India.
This would restrict users in the ‘IndianAnalyst' role to only see the pilots from India and prevent them from accessing the pilots from other countries.
Table partitions are used to divide large tables into smaller, more manageable parts for performance and maintenance purposes. Encryption is used to protect data from unauthorized access by encrypting it at rest or in transit. Column-Level security is used to restrict access to specific columns in a table based on a user's role or permissions. Data Masking is used to mask sensitive data in a table, so that users can only see the data they are authorized to see, while still allowing them to work with the data in a meaningful way. While these are all valid security features, they are not directly applicable to the scenario described in the question.
