Security overview
The Organizational settings console is a web interface for setting up, monitoring, and managing user access to Imply Polaris. It encapsulates access settings across the entire organization. It is also where you configure authentication policies and connect third-party identity providers.
To access the Organizational settings console from the Home page, click the profile menu in the top right corner. Select User management from the list of menu options.
Authentication and authorization
Polaris identifies each authorized user of your account by a unique login tied to their email address. Polaris offers a role-based access control (RBAC) model that allows you to control the level of access available to users in your organization.
In particular, the RBAC model lets you manage the following permissions for Polaris authorized users:
- Ability to manage projects and other users.
- Ability to manage data cubes and dashboards.
- Ability to see visualizations.
- Ability to query data directly with SQL.
- Ability to load new data.
In addition to authorized users, you can define custom API clients to enable applications to generate access tokens to call the Polaris API directly. For information on API client access, see Authenticate API requests.
Roles and groups
A role is a permission to perform an action within a project. When you assign a role to a user, you enable that user to perform a task or access a feature in Polaris. For example, the AdministerDashboards
role enables a user to view and manage all dashboards within an organization.
Polaris provides predefined roles that you can assign to individual users to grant them specific permissions.
Alternatively, you can combine the predefined roles into custom groups and assign users to those groups. For information on creating and configuring groups, see Manage user groups.
Polaris also includes built-in groups that correspond to specific use cases, such as Organization Admin, Data Manager, and Viewer. All new users are added to the Viewer group by default.