Metadata Manager Service Privileges
Metadata Manager Service privileges determine the Metadata Manager actions that users can perform using Metadata Manager.
The following table describes each Metadata Manager privilege group:
Privilege Group | Description |
|---|
Catalog | Includes privileges to manage objects in the Browse page of the Metadata Manager interface. |
Load | Includes privileges to manage objects in the Load page of the Metadata Manager interface. |
Model | Includes privileges to manage objects in the Model page of the Metadata Manager interface. |
Security | Includes privileges to manage objects in the Security page of the Metadata Manager interface. |
Catalog Privilege Group
The privileges in the Catalog privilege group determine the tasks that users can perform on the Browse tab of the Metadata Manager application. A user with the privilege to perform a certain action also requires permissions to perform the action on a particular object. Configure permissions on the Security tab of the Metadata Manager application.
The following table lists the privileges in the Catalog privilege group and the permissions required to perform a task on an object:
Privilege | Includes Privileges | Permission | Description |
|---|
Share Shortcuts | n/a | Write | User is able to share a folder that contains a shortcut with other users and groups. |
View Lineage | n/a | Read | User is able to perform the following actions: - - Run data lineage analysis on metadata objects, categories, and business terms.
- - Run data lineage analysis from the PowerCenter Designer. Users must also have read permission on the PowerCenter repository folder.
|
View Related Catalogs | n/a | Read | User is able to view related catalogs. |
View Profile Results | n/a | Read | User is able to view profiling information for metadata objects in the catalog from a relational source. |
View Catalog | n/a | Read | User is able to perform the following actions: - - View resources and metadata objects in the metadata catalog.
- - Search the metadata catalog.
|
View Relationships | n/a | Read | User is able to view relationships for metadata objects, categories, and business terms. |
Manage Relationships | View Relationships | Write | User is able to create, edit, and delete relationships for custom metadata objects, categories, and business terms. |
View Comments | n/a | Read | User is able to view comments for metadata objects, categories, and business terms. |
Post Comments | View Comments | Write | User is able to add comments for metadata objects, categories, and business terms. |
Delete Comments | - - Post Comments
- - View Comments
| Write | User is able to delete comments for metadata objects, categories, and business terms. |
View Links | n/a | Read | User is able to view links for metadata objects, categories, and business terms. |
Manage Links | View Links | Write | User is able to create, edit, and delete links for metadata objects, categories, and business terms. |
View Glossary | n/a | Read | User is able to perform the following actions: - - View business glossaries in the Glossary view.
- - Search business glossaries.
|
Manage Objects | n/a | Write | User is able to perform the following actions: - - Edit metadata objects in the catalog.
- - Create, edit, and delete custom metadata objects. Users must also have the View Model privilege.
- - Create, edit, and delete custom metadata resources. Users must also have the Manage Resource privilege.
|
Load Privilege Group
The privileges in the Load privilege group determine the tasks that users can perform on the Load tab of the Metadata Manager application. A user with the privilege to perform a certain action also requires permissions to perform the action on a particular object. Configure permissions on the Security tab of the Metadata Manager application.
The following table lists the privileges and permissions required to manage an instance of a resource in the Metadata Manager warehouse:
Privilege | Includes Privileges | Permission | Description |
|---|
View Resource | - | Read | User is able to perform the following actions: - - View resources and resource properties in the Metadata Manager warehouse.
- - Export resource configurations.
- - Download the Metadata Manager Agent installer.
|
Load Resource | View Resource | Write | User is able to perform the following actions: - - Load metadata for a resource into the Metadata Manager warehouse.*
- - Create links between objects in connected resources for data lineage.
- - Configure search indexing for resources.
- - Import resource configurations.
|
Manage Schedules | View Resource | Write | User is able to perform the following actions: - - Create and edit schedules.
- - Add schedules to resources.
|
Purge Metadata | View Resource | Write | User is able to remove metadata for a resource from the Metadata Manager warehouse. |
Manage Resource | - - Purge Metadata
- - View Resource
| Write | User is able to create, edit, and delete resources. |
* To load metadata for Business Glossary resources, the Load Resource, Manage Resource, and View Model privileges are required. |
Model Privilege Group
The privileges in the Model privilege group determine the tasks that users can perform on the Model tab of the Metadata Manager application. You cannot configure permissions on a model.
The following table lists the privileges required to manage models:
Privilege | Includes Privileges | Permission | Description |
|---|
View Model | - | - | User is able to open models and classes, and view model and class properties. View relationships and attributes for classes. |
Manage Model | View Model | - | User is able to create, edit, and delete custom models. Add attributes to packaged and universal models. |
Export/Import Models | View Model | - | User is able to import and export custom models. Import and export modified packaged and universal models. |
Security Privilege Group
The privileges in the Security privilege group determines the tasks that users can perform on the Security tab of the Metadata Manager application.
By default, the Manage Catalog Permissions privilege in the Security privilege group is assigned to the Administrator, or a user with the Administrator role on the Metadata Manager Service. You can assign the Manage Catalog Permissions privilege to other users.
The following table lists the privilege and permission required to manage Metadata Manager security:
Privilege | Includes Privileges | Permission | Description |
|---|
Manage Catalog Permissions | - | Full control | User is able to perform the following actions: - - Assign users and groups permissions on resources, metadata objects, categories, and business terms.
- - Edit permissions on resources, metadata objects, categories, and business terms.
|