SlideShare a Scribd company logo
Vision and Scope Document | RLS Prototype ETL
Row Level Security (RLS)
Version 1.0
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 2 of 8
Vision
Pam Lehmann and Brian Leslie have identified a need to enable Row Level Security (RLS) on two Microsoft Applications
(AAS and SSRS) in order to service new and existing Sales, Finance, and Operations reports. The source for these reports
originate from TricorBraun’s ERP system Microsoft Dynamics 365. There are two Dynamics 365 applications that are
currently being considered as sources for this initiative. These Dynamics 365 applications are Sales (CRM) and Finance
and Operations. Below are the identified Executive Leadership and Stakeholders from TricorBraun:
• Jeff Douglas, VP Sales Effectiveness
• Bill Stultz, VP of Finance for System’s Controller, Finance (Executive Champion)
• Dave Duxbury, VP of Operations, GSC – Logistics (Executive Champion)
• Doug Bolen, Chief Information Officer
• Brian Leslie, Senior Reporting Analyst, IT
• Donovan Foster, IT Consultant, PMO, IT
• Sarah Thomason, Project Manager
• Mike Lang, Consultant - RSM
Due to the complexity of this initiative, it has been decided to complete a RLS Prototype ETL before we complete the
final, expanded Vision Scope Document and the final RLS Design Document. This Vision Scope Document is of limited
scope just for the RLS ETL prototype. As the team at TricorBraun identify and finalize the expanded scope, we will
document and append to an Expanded Vision Scope Document intended for the final design and development, not the
prototype.
It has been decided to use the existing Invoicing Data Mart as our destination for the RLS prototype ETL mentioned
above. We will be loading one (1) entitlement table that will be used by the SSRS RLS Prototype as well as other security
tables to be used by AAS RLS Prototype. (Additional details on the SSRS and AAS RLS Prototypes can be found in their
related vision scope documents.) These AAS RLS Prototype tables are UserSecurity, DivisionSecurityBridge,
RegionSecurityBridge, and CustomerSecurityBridge.
The plan of this development is to load these tables using PowerShell and the PowerShell Active Directory Modules. This
development will require a historical update as well as on-going maintenance to all current AD users that will be
accessing any RLS implementation. This will allow us to identify AD users who should have access at a certain security
level (Total Company, Division, Region, Customer), as well as a key (code) that we can define to help us determine what
the AD User should have access to at that security level.
To develop and test this RLS Prototype ETL, it will require the help of many other IT Groups and Departments including
AD Administrators, HR Administrators, and Development Teams. We will require AD Administrators to create and
update AD Security Groups and Group Membership as well as other AD specific requirements detailed below, but most
importantly creating test AD Security Groups and Test AD Users described in Appendix A and Appendix B (these test
groups and users were originally approved by the team on 3/25/2019 (AAS Vision Scope Document). We will need input
and clarification from HR in how to use Employee data to gather a User’s Branch and Branch Role to determine security
level access dynamically (if possible; a manual alternative is provided if the dynamic plan is not a viable option). The
development team will be creating PowerShell, T-SQL, and DAX scripts to load the tables based on the data entered in
AD and the Rules defined between IT and HR.
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 3 of 8
Approach
This approach has two sides that require separate consideration.
• Application (feature)
• Database and Model
Each side for consideration includes discussions around the two existing SSRS and AAS RLS Prototype projects as well as
the current RLS Prototype ETL project. Topics in these discussions will include security and the Invoice Data Mart, SQL
Server Objects, Active Directory, PowerShell, HR Software, and Azure Analysis Services.
Application (feature) Side
For SSRS, this means altering all existing reports (stored procedures) and parameter queries to the design of the test
SSRS report created with the SSRS RLS Prototype. For initial development testing, we have created a new version of the
SSRS Daily Gross Profit report and new stored procedures for RLS cascading parameters.
For AAS, security is role based, not where clause (predicate) based. A role is assigned users (members) by adding AD
Groups or AD Users. Members of the role will have a RLS security filter applied that is defined as part of the role. It is
recommended to use AD Security Groups to simplify member management. For initial development testing, we have
created a Power BI report using some of the metrics from the Daily Gross Profit Dashboard.
Last, for the ETL, we will need AD Security Groups and AD Users described in Appendix A and Appendix B. For ongoing
maintenance of the data stored in the RLS_AD_ETL table, an ASP.Net [C#] web application will be developed in a future
phase. This web application’s intended users are the business users, not IT.
Appendix A and Appendix B outline what is required now before this new development can begin.
AAS Role Members as AD Users (need Groups)
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 4 of 8
Database and Model Side
This side for consideration includes the database structures (tables, views, SPs) as well as data models (DAX) in AAS.
There have been security related objects created for both the SSRS and AAS RLS Prototype projects as well as the
current RLS Prototype ETL project.
For SSRS, this means an entitlement table and a security level stored procedure were developed. To provide dynamic
parameters filtered by RLS, new parameter stored procedures were developed as well. These stored procedures use if
clauses along with the security level returned by a stored procedure to apply a different predicate based on a specific
security level (total company, division, region, customer).
For AAS, this means four additional security tables and three additional security views. For AAS, we have a model with
relationships and roles that include these security tables and views to enforce RLS.
Last, for the ETL, we will need a RLS_AD_ETL lookup table and PowerShell scripts that load the security tables based on
RLS_ETL_CODES and CSV String stored in table. Brain and the IT team are working on a dynamic solution to determine
RLS level access (RLS_ETL_CODES and CSV String for either division, regions, customers, or Total Company) by using
TricorBraun’s two HR systems by using employee branch and role at branch data. If this is not possible, a manual process
of applying RLS_ETL_CODES and CSV String to an AD User will be required.
Row Level Security | Overall ETL Plan
PowerShell ETL
Invoice DM and
RLS Prototype
SQL Structures
Active Directory
Groups
RLS_ETL_CODE
HR Branch
& Branch Role
Total Company
Division
Region
Customer
T-SQL
PowerShell
Start ETL
SQL Server Job
Start ETL
SQL Server Job
RLS_AD_ETL (ETL Table)
RLS_ETL_KeyPK
AD_UserName
AD_UserEmail
RLS_Level
RLS_ETL_Code
RLS_ETL_Code_Desc
RLS_ETL_Code_Category
CSV_String
AD_UserSAM
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 5 of 8
Deliverables
Azure Analysis Services RLS has one (1) deliverable:
• Development RLS Prototype ETL Start Date: TBD End Date: TBD
o Power Shell Script(s) to Load and T-SQL Scripts to Transform Data into Stage and Model Tables
▪ Entitlement
▪ UserSecurity
▪ DivisionSecurityBridge
▪ RegionSecurityBridge
▪ CustomerSecurityBridge.
o RLS_AD_ETL Table and Scripts with Default RLS_ETL_CODES
o … Add Dynamic Access from HR Applications
Clarifications
These are the clarification for the RLS project:
• Test AD Security Groups and Test Users must be Created and Testes before PowerShell ETL Development Can Begin
• PowerShell AD Module requires CN, OU, and DC information (Distinguished Name) created in Advance to use in code
CN, OU, and DC are all defined when a new AD Object (Group, Group Member, User) is created by the AD Team
• A RLS Key (Code) Needs to be Agreed Upon to enable Dynamic PowerShell Code for Entitlement and Bridge Tables
• Production Daily / Weekly Scheduling and Invoice Datamart Load Sequencing of the main (entry) PowerShell Script will be
the responsibility of the TricorBraun IT Team. Development testing can use basic, isolated SQL Server Jobs for scheduling
• Logic Needed to Dynamic Access from HR Applications (how to dynamically define CSV_String) will be provided by Brian
• ASP.Net [C#] web application Planned Features for Future Phase to Manage RLS_AD_ETL Table Load by Business Users
o Validate RLS_Level matches CSV_String in terms of Region Level has Regions (only) in the CSV String
o Validate Users are only assigned 1 RLS_Level
o Allow Drop Down Selection for RLS_ETL_Code_Category
▪ Test uses a Default Category
o Get another User’s RLS_ETL_Code and use it to Get the same CSV_String
o Allow Custom RLS_ETL_Code Creation for remaining 20% Users that we can’t dynamically define by code
o Allow Manual Process to Apply Custom RLS_ETL_Code to a Specific User(s)
How to get the Job Done
We will be using the following processes and tools to complete this project and deliverables:
• Azure DevOps (VSTS)
• Team Foundation Services, or Git (TBD), since both are used at TricorBraun for Source Control and Change Management
• We are limiting the work-in-progress by using properly planned deliverables
• PBIs, Tasks, and Kanban Boards will be used as part of Azure DevOps (VSTS)
o Product backlog
o Tasks
o Weekly PowerPoint Updates
o Sprints are not used at TricorBraun
• A scope change log for this document will be used to manage change in an Agile fashion
o Name
o Description (Impact)
o Version
o Requested By
o Approved By
o Date
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 6 of 8
Change Log
Name Description (Impact) Version Requested By Approved By Date
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 7 of 8
Appendix A | Test Active Directory Security Groups / Group Members
Four (4) Test Active Directory Security Groups
• RLS Total Company (Global Scope; Email: RLS-TotalCompany@TricorBraun.com)
• RLS Division (Global Scope; Email: RLS-Division@TricorBraun.com)
• RLS Region (Global Scope; Email: RLS-Region@TricorBraun.com)
• RLS Customer (Global Scope; Email: RLS-Customer@TricorBraun.com)
** WARNING ** Active Directory Security Groups must have their email defined when originally created! Emails for AD Security
Groups cannot be updated after being created.
Group Members
RLS Total Company
RLS Test User 1
RLS Division
RLS Test User 2
RLS Test User 7
RLS Test User 9
RLS Region
RLS Test User 3
RLS Test User 6
RLS Test User 8
RLS Customer
RLS Test User 4
RLS Test User 5
Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS)
© AIM Business Driven Data Solutions, 2019 Page 8 of 8
Appendix B | Test Active Directory Users
Nine (9) Test Active Directory Users
RLS Test User 1 FIRST NAME Test LAST NAME User 1
DESCRIPTION RLS Test User 1 OFFICE IT
USERLOGONNAME test.user1@tricorbraun.com & tricorbrauntest.user1 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 2 FIRST NAME Test LAST NAME User 2
DESCRIPTION RLS Test User 2 OFFICE IT
USERLOGONNAME test.user2@tricorbraun.com & tricorbrauntest.user2 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 3 FIRST NAME Test LAST NAME User 3
DESCRIPTION RLS Test User 3 OFFICE IT
USERLOGONNAME test.user3@tricorbraun.com & tricorbrauntest.user3 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 4 FIRST NAME Test LAST NAME User 4
DESCRIPTION RLS Test User 4 OFFICE IT
USERLOGONNAME test.user4@tricorbraun.com & tricorbrauntest.user4 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 5 FIRST NAME Test LAST NAME User 5
DESCRIPTION RLS Test User 5 OFFICE IT
USERLOGONNAME test.user5@tricorbraun.com & tricorbrauntest.user5 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 6 FIRST NAME Test LAST NAME User 6
DESCRIPTION RLS Test User 6 OFFICE IT
USERLOGONNAME test.user6@tricorbraun.com & tricorbrauntest.user6 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 7 FIRST NAME Test LAST NAME User 7
DESCRIPTION RLS Test User 7 OFFICE IT
USERLOGONNAME test.user7@tricorbraun.com & tricorbrauntest.user7 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 8 FIRST NAME Test LAST NAME User 8
DESCRIPTION RLS Test User 8 OFFICE IT
USERLOGONNAME test.user8@tricorbraun.com & tricorbrauntest.user8 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]
RLS Test User 9 FIRST NAME Test LAST NAME User 9
DESCRIPTION RLS Test User 9 OFFICE IT
USERLOGONNAME test.user9@tricorbraun.com & tricorbrauntest.user9 [pre-2000]
NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]

More Related Content

What's hot

Big Data and BI Tools - BI Reporting for Bay Area Startups User Group
Big Data and BI Tools - BI Reporting for Bay Area Startups User GroupBig Data and BI Tools - BI Reporting for Bay Area Startups User Group
Big Data and BI Tools - BI Reporting for Bay Area Startups User Group
Scott Mitchell
 
ERP Data Migration Methodologies
ERP Data Migration MethodologiesERP Data Migration Methodologies
ERP Data Migration Methodologies
Ahmed M. Rafik
 
Sql business intelligence
Sql business intelligenceSql business intelligence
Sql business intelligence
Sqlperfomance
 
SAP BW vs Teradat; A White Paper
SAP BW vs Teradat; A White PaperSAP BW vs Teradat; A White Paper
SAP BW vs Teradat; A White Paper
Vipul Neema
 
Unified Enterprise Data Mapping, Governance & Automation Platform
Unified Enterprise Data Mapping, Governance & Automation PlatformUnified Enterprise Data Mapping, Governance & Automation Platform
Unified Enterprise Data Mapping, Governance & Automation Platform
AnalytiX DS
 
SAP HANA Integrated with Microstrategy
SAP HANA Integrated with MicrostrategySAP HANA Integrated with Microstrategy
SAP HANA Integrated with Microstrategy
snehal parikh
 
Data flow in Extraction of ETL data warehousing
Data flow in Extraction of ETL data warehousingData flow in Extraction of ETL data warehousing
Data flow in Extraction of ETL data warehousing
Dr. Dipti Patil
 
prime_bi_brochure
prime_bi_brochureprime_bi_brochure
prime_bi_brochure
Tiago Felix
 
Database migration
Database migrationDatabase migration
Database migration
MoniqueO Opris
 
SAP HANA Data integration using Informatica
SAP HANA Data integration using InformaticaSAP HANA Data integration using Informatica
SAP HANA Data integration using Informatica
Oracle
 
Basha_ETL_Developer
Basha_ETL_DeveloperBasha_ETL_Developer
Basha_ETL_Developer
basha shaik
 
Informatica slides
Informatica slidesInformatica slides
Informatica slides
sureshpaladi12
 
Reporting
ReportingReporting
Reporting
ModakAnalytics
 
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
Cloudera, Inc.
 
MicroStrategy 9 - Extending Business Intelligence
MicroStrategy 9 - Extending Business IntelligenceMicroStrategy 9 - Extending Business Intelligence
MicroStrategy 9 - Extending Business Intelligence
MicroStrategy Nederland
 
Ravi_Narala_Resume
Ravi_Narala_ResumeRavi_Narala_Resume
Ravi_Narala_Resume
Ravi Kumar Reddy Narala
 
Ashish_Maheshwari_Data_Analyst
Ashish_Maheshwari_Data_AnalystAshish_Maheshwari_Data_Analyst
Ashish_Maheshwari_Data_Analyst
Ashish Maheshwari
 
Optimizing MS Dynamics AX 2012 R3
Optimizing MS Dynamics AX 2012 R3Optimizing MS Dynamics AX 2012 R3
Optimizing MS Dynamics AX 2012 R3
Juan Fabian
 
Mukhtar resume etl_developer
Mukhtar resume etl_developerMukhtar resume etl_developer
Mukhtar resume etl_developer
Mukhtar Mohammed
 
Hand Coding ETL Scenarios and Challenges
Hand Coding ETL Scenarios and ChallengesHand Coding ETL Scenarios and Challenges
Hand Coding ETL Scenarios and Challenges
mark madsen
 

What's hot (20)

Big Data and BI Tools - BI Reporting for Bay Area Startups User Group
Big Data and BI Tools - BI Reporting for Bay Area Startups User GroupBig Data and BI Tools - BI Reporting for Bay Area Startups User Group
Big Data and BI Tools - BI Reporting for Bay Area Startups User Group
 
ERP Data Migration Methodologies
ERP Data Migration MethodologiesERP Data Migration Methodologies
ERP Data Migration Methodologies
 
Sql business intelligence
Sql business intelligenceSql business intelligence
Sql business intelligence
 
SAP BW vs Teradat; A White Paper
SAP BW vs Teradat; A White PaperSAP BW vs Teradat; A White Paper
SAP BW vs Teradat; A White Paper
 
Unified Enterprise Data Mapping, Governance & Automation Platform
Unified Enterprise Data Mapping, Governance & Automation PlatformUnified Enterprise Data Mapping, Governance & Automation Platform
Unified Enterprise Data Mapping, Governance & Automation Platform
 
SAP HANA Integrated with Microstrategy
SAP HANA Integrated with MicrostrategySAP HANA Integrated with Microstrategy
SAP HANA Integrated with Microstrategy
 
Data flow in Extraction of ETL data warehousing
Data flow in Extraction of ETL data warehousingData flow in Extraction of ETL data warehousing
Data flow in Extraction of ETL data warehousing
 
prime_bi_brochure
prime_bi_brochureprime_bi_brochure
prime_bi_brochure
 
Database migration
Database migrationDatabase migration
Database migration
 
SAP HANA Data integration using Informatica
SAP HANA Data integration using InformaticaSAP HANA Data integration using Informatica
SAP HANA Data integration using Informatica
 
Basha_ETL_Developer
Basha_ETL_DeveloperBasha_ETL_Developer
Basha_ETL_Developer
 
Informatica slides
Informatica slidesInformatica slides
Informatica slides
 
Reporting
ReportingReporting
Reporting
 
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
Hadoop World 2011: Big Data Architecture: Integrating Hadoop with Other Enter...
 
MicroStrategy 9 - Extending Business Intelligence
MicroStrategy 9 - Extending Business IntelligenceMicroStrategy 9 - Extending Business Intelligence
MicroStrategy 9 - Extending Business Intelligence
 
Ravi_Narala_Resume
Ravi_Narala_ResumeRavi_Narala_Resume
Ravi_Narala_Resume
 
Ashish_Maheshwari_Data_Analyst
Ashish_Maheshwari_Data_AnalystAshish_Maheshwari_Data_Analyst
Ashish_Maheshwari_Data_Analyst
 
Optimizing MS Dynamics AX 2012 R3
Optimizing MS Dynamics AX 2012 R3Optimizing MS Dynamics AX 2012 R3
Optimizing MS Dynamics AX 2012 R3
 
Mukhtar resume etl_developer
Mukhtar resume etl_developerMukhtar resume etl_developer
Mukhtar resume etl_developer
 
Hand Coding ETL Scenarios and Challenges
Hand Coding ETL Scenarios and ChallengesHand Coding ETL Scenarios and Challenges
Hand Coding ETL Scenarios and Challenges
 

Similar to RLS Prototype ETL | Vision and Scope Document

Resume Aden bahdon
Resume Aden bahdonResume Aden bahdon
Resume Aden bahdon
Aden Bahdon
 
Naveen CV
Naveen CVNaveen CV
Naveen CV
NaveenKumar GV
 
GCharles_Resume_Summer_2016_SS_Short
GCharles_Resume_Summer_2016_SS_ShortGCharles_Resume_Summer_2016_SS_Short
GCharles_Resume_Summer_2016_SS_Short
sshgc
 
354836_(General_Format)Mahaboob Basha Shaik
354836_(General_Format)Mahaboob Basha Shaik354836_(General_Format)Mahaboob Basha Shaik
354836_(General_Format)Mahaboob Basha Shaik
Mahaboob Basha Shaik
 
ChakravarthyUppara
ChakravarthyUpparaChakravarthyUppara
ChakravarthyUppara
Chakravarthy Uppara
 
Resume_Vellaiyan
Resume_VellaiyanResume_Vellaiyan
Resume_Vellaiyan
vellaiyan lakshmanan
 
Technology Overview
Technology OverviewTechnology Overview
Technology Overview
Liran Zelkha
 
Sujit lead plsql
Sujit lead plsqlSujit lead plsql
Sujit lead plsql
Sujit Jha
 
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdfData Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
Amazon Web Services
 
Skills Portfolio
Skills PortfolioSkills Portfolio
Skills Portfolio
rolee23
 
SQL SERVER 2008 R2 CTP
SQL SERVER 2008 R2 CTPSQL SERVER 2008 R2 CTP
SQL SERVER 2008 R2 CTP
Govind S Yadav
 
Data mining
Data miningData mining
Data mining
sweetysweety8
 
Whats New Sql Server 2008 R2
Whats New Sql Server 2008 R2Whats New Sql Server 2008 R2
Whats New Sql Server 2008 R2
Eduardo Castro
 
Axsys Technologies Software Offerings
Axsys Technologies Software OfferingsAxsys Technologies Software Offerings
Axsys Technologies Software Offerings
Suvadeep Sarkar
 
Financial, Retail And Shopping Domains
Financial, Retail And Shopping DomainsFinancial, Retail And Shopping Domains
Financial, Retail And Shopping Domains
Sonia Sanchez
 
Increased IT infrastructure effectiveness by 80% with Microsoft system center...
Increased IT infrastructure effectiveness by 80% with Microsoft system center...Increased IT infrastructure effectiveness by 80% with Microsoft system center...
Increased IT infrastructure effectiveness by 80% with Microsoft system center...
Aspire Systems
 
Whats New Sql Server 2008 R2 Cw
Whats New Sql Server 2008 R2 CwWhats New Sql Server 2008 R2 Cw
Whats New Sql Server 2008 R2 Cw
Eduardo Castro
 
Yamanappa_Kattimani_2016
Yamanappa_Kattimani_2016Yamanappa_Kattimani_2016
Yamanappa_Kattimani_2016
yamanappa kattimani
 
Borden_resume_1JUN16
Borden_resume_1JUN16Borden_resume_1JUN16
Borden_resume_1JUN16
Gary Borden
 
Jacob Keecheril
Jacob KeecherilJacob Keecheril
Jacob Keecheril
Jacob Keecheril
 

Similar to RLS Prototype ETL | Vision and Scope Document (20)

Resume Aden bahdon
Resume Aden bahdonResume Aden bahdon
Resume Aden bahdon
 
Naveen CV
Naveen CVNaveen CV
Naveen CV
 
GCharles_Resume_Summer_2016_SS_Short
GCharles_Resume_Summer_2016_SS_ShortGCharles_Resume_Summer_2016_SS_Short
GCharles_Resume_Summer_2016_SS_Short
 
354836_(General_Format)Mahaboob Basha Shaik
354836_(General_Format)Mahaboob Basha Shaik354836_(General_Format)Mahaboob Basha Shaik
354836_(General_Format)Mahaboob Basha Shaik
 
ChakravarthyUppara
ChakravarthyUpparaChakravarthyUppara
ChakravarthyUppara
 
Resume_Vellaiyan
Resume_VellaiyanResume_Vellaiyan
Resume_Vellaiyan
 
Technology Overview
Technology OverviewTechnology Overview
Technology Overview
 
Sujit lead plsql
Sujit lead plsqlSujit lead plsql
Sujit lead plsql
 
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdfData Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
Data Lakes and Analytics Dow Jones - AWS FS Cloud Symposium Apr 2019.pdf
 
Skills Portfolio
Skills PortfolioSkills Portfolio
Skills Portfolio
 
SQL SERVER 2008 R2 CTP
SQL SERVER 2008 R2 CTPSQL SERVER 2008 R2 CTP
SQL SERVER 2008 R2 CTP
 
Data mining
Data miningData mining
Data mining
 
Whats New Sql Server 2008 R2
Whats New Sql Server 2008 R2Whats New Sql Server 2008 R2
Whats New Sql Server 2008 R2
 
Axsys Technologies Software Offerings
Axsys Technologies Software OfferingsAxsys Technologies Software Offerings
Axsys Technologies Software Offerings
 
Financial, Retail And Shopping Domains
Financial, Retail And Shopping DomainsFinancial, Retail And Shopping Domains
Financial, Retail And Shopping Domains
 
Increased IT infrastructure effectiveness by 80% with Microsoft system center...
Increased IT infrastructure effectiveness by 80% with Microsoft system center...Increased IT infrastructure effectiveness by 80% with Microsoft system center...
Increased IT infrastructure effectiveness by 80% with Microsoft system center...
 
Whats New Sql Server 2008 R2 Cw
Whats New Sql Server 2008 R2 CwWhats New Sql Server 2008 R2 Cw
Whats New Sql Server 2008 R2 Cw
 
Yamanappa_Kattimani_2016
Yamanappa_Kattimani_2016Yamanappa_Kattimani_2016
Yamanappa_Kattimani_2016
 
Borden_resume_1JUN16
Borden_resume_1JUN16Borden_resume_1JUN16
Borden_resume_1JUN16
 
Jacob Keecheril
Jacob KeecherilJacob Keecheril
Jacob Keecheril
 

More from Ryan Casey

BI Environment Technical Analysis
BI Environment Technical AnalysisBI Environment Technical Analysis
BI Environment Technical Analysis
Ryan Casey
 
Invoicing Bus Matrix
Invoicing Bus MatrixInvoicing Bus Matrix
Invoicing Bus Matrix
Ryan Casey
 
First Steps Snapshot vs Transaction Grain Statements
First Steps Snapshot vs Transaction Grain StatementsFirst Steps Snapshot vs Transaction Grain Statements
First Steps Snapshot vs Transaction Grain Statements
Ryan Casey
 
First Steps to Define Grain
First Steps to Define GrainFirst Steps to Define Grain
First Steps to Define Grain
Ryan Casey
 
Dynamic CSV String Business Rules and Pseudo Logic
Dynamic CSV String Business Rules and Pseudo LogicDynamic CSV String Business Rules and Pseudo Logic
Dynamic CSV String Business Rules and Pseudo Logic
Ryan Casey
 
Defining the Grain | Source system: Dynamics 365
Defining the Grain | Source system: Dynamics 365Defining the Grain | Source system: Dynamics 365
Defining the Grain | Source system: Dynamics 365
Ryan Casey
 

More from Ryan Casey (6)

BI Environment Technical Analysis
BI Environment Technical AnalysisBI Environment Technical Analysis
BI Environment Technical Analysis
 
Invoicing Bus Matrix
Invoicing Bus MatrixInvoicing Bus Matrix
Invoicing Bus Matrix
 
First Steps Snapshot vs Transaction Grain Statements
First Steps Snapshot vs Transaction Grain StatementsFirst Steps Snapshot vs Transaction Grain Statements
First Steps Snapshot vs Transaction Grain Statements
 
First Steps to Define Grain
First Steps to Define GrainFirst Steps to Define Grain
First Steps to Define Grain
 
Dynamic CSV String Business Rules and Pseudo Logic
Dynamic CSV String Business Rules and Pseudo LogicDynamic CSV String Business Rules and Pseudo Logic
Dynamic CSV String Business Rules and Pseudo Logic
 
Defining the Grain | Source system: Dynamics 365
Defining the Grain | Source system: Dynamics 365Defining the Grain | Source system: Dynamics 365
Defining the Grain | Source system: Dynamics 365
 

Recently uploaded

原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
wyddcwye1
 
Population Growth in Bataan: The effects of population growth around rural pl...
Population Growth in Bataan: The effects of population growth around rural pl...Population Growth in Bataan: The effects of population growth around rural pl...
Population Growth in Bataan: The effects of population growth around rural pl...
Bill641377
 
Global Situational Awareness of A.I. and where its headed
Global Situational Awareness of A.I. and where its headedGlobal Situational Awareness of A.I. and where its headed
Global Situational Awareness of A.I. and where its headed
vikram sood
 
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data LakeViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
Walaa Eldin Moustafa
 
一比一原版(UO毕业证)渥太华大学毕业证如何办理
一比一原版(UO毕业证)渥太华大学毕业证如何办理一比一原版(UO毕业证)渥太华大学毕业证如何办理
一比一原版(UO毕业证)渥太华大学毕业证如何办理
aqzctr7x
 
A presentation that explain the Power BI Licensing
A presentation that explain the Power BI LicensingA presentation that explain the Power BI Licensing
A presentation that explain the Power BI Licensing
AlessioFois2
 
End-to-end pipeline agility - Berlin Buzzwords 2024
End-to-end pipeline agility - Berlin Buzzwords 2024End-to-end pipeline agility - Berlin Buzzwords 2024
End-to-end pipeline agility - Berlin Buzzwords 2024
Lars Albertsson
 
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
apvysm8
 
Analysis insight about a Flyball dog competition team's performance
Analysis insight about a Flyball dog competition team's performanceAnalysis insight about a Flyball dog competition team's performance
Analysis insight about a Flyball dog competition team's performance
roli9797
 
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
bopyb
 
Intelligence supported media monitoring in veterinary medicine
Intelligence supported media monitoring in veterinary medicineIntelligence supported media monitoring in veterinary medicine
Intelligence supported media monitoring in veterinary medicine
AndrzejJarynowski
 
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
sameer shah
 
Open Source Contributions to Postgres: The Basics POSETTE 2024
Open Source Contributions to Postgres: The Basics POSETTE 2024Open Source Contributions to Postgres: The Basics POSETTE 2024
Open Source Contributions to Postgres: The Basics POSETTE 2024
ElizabethGarrettChri
 
Everything you wanted to know about LIHTC
Everything you wanted to know about LIHTCEverything you wanted to know about LIHTC
Everything you wanted to know about LIHTC
Roger Valdez
 
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
v7oacc3l
 
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
nyfuhyz
 
Challenges of Nation Building-1.pptx with more important
Challenges of Nation Building-1.pptx with more importantChallenges of Nation Building-1.pptx with more important
Challenges of Nation Building-1.pptx with more important
Sm321
 
University of New South Wales degree offer diploma Transcript
University of New South Wales degree offer diploma TranscriptUniversity of New South Wales degree offer diploma Transcript
University of New South Wales degree offer diploma Transcript
soxrziqu
 
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docxDATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
SaffaIbrahim1
 
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdfUdemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
Fernanda Palhano
 

Recently uploaded (20)

原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
原版一比一利兹贝克特大学毕业证(LeedsBeckett毕业证书)如何办理
 
Population Growth in Bataan: The effects of population growth around rural pl...
Population Growth in Bataan: The effects of population growth around rural pl...Population Growth in Bataan: The effects of population growth around rural pl...
Population Growth in Bataan: The effects of population growth around rural pl...
 
Global Situational Awareness of A.I. and where its headed
Global Situational Awareness of A.I. and where its headedGlobal Situational Awareness of A.I. and where its headed
Global Situational Awareness of A.I. and where its headed
 
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data LakeViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
ViewShift: Hassle-free Dynamic Policy Enforcement for Every Data Lake
 
一比一原版(UO毕业证)渥太华大学毕业证如何办理
一比一原版(UO毕业证)渥太华大学毕业证如何办理一比一原版(UO毕业证)渥太华大学毕业证如何办理
一比一原版(UO毕业证)渥太华大学毕业证如何办理
 
A presentation that explain the Power BI Licensing
A presentation that explain the Power BI LicensingA presentation that explain the Power BI Licensing
A presentation that explain the Power BI Licensing
 
End-to-end pipeline agility - Berlin Buzzwords 2024
End-to-end pipeline agility - Berlin Buzzwords 2024End-to-end pipeline agility - Berlin Buzzwords 2024
End-to-end pipeline agility - Berlin Buzzwords 2024
 
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
办(uts毕业证书)悉尼科技大学毕业证学历证书原版一模一样
 
Analysis insight about a Flyball dog competition team's performance
Analysis insight about a Flyball dog competition team's performanceAnalysis insight about a Flyball dog competition team's performance
Analysis insight about a Flyball dog competition team's performance
 
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
一比一原版(GWU,GW文凭证书)乔治·华盛顿大学毕业证如何办理
 
Intelligence supported media monitoring in veterinary medicine
Intelligence supported media monitoring in veterinary medicineIntelligence supported media monitoring in veterinary medicine
Intelligence supported media monitoring in veterinary medicine
 
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
STATATHON: Unleashing the Power of Statistics in a 48-Hour Knowledge Extravag...
 
Open Source Contributions to Postgres: The Basics POSETTE 2024
Open Source Contributions to Postgres: The Basics POSETTE 2024Open Source Contributions to Postgres: The Basics POSETTE 2024
Open Source Contributions to Postgres: The Basics POSETTE 2024
 
Everything you wanted to know about LIHTC
Everything you wanted to know about LIHTCEverything you wanted to know about LIHTC
Everything you wanted to know about LIHTC
 
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
在线办理(英国UCA毕业证书)创意艺术大学毕业证在读证明一模一样
 
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
一比一原版(UMN文凭证书)明尼苏达大学毕业证如何办理
 
Challenges of Nation Building-1.pptx with more important
Challenges of Nation Building-1.pptx with more importantChallenges of Nation Building-1.pptx with more important
Challenges of Nation Building-1.pptx with more important
 
University of New South Wales degree offer diploma Transcript
University of New South Wales degree offer diploma TranscriptUniversity of New South Wales degree offer diploma Transcript
University of New South Wales degree offer diploma Transcript
 
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docxDATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
DATA COMMS-NETWORKS YR2 lecture 08 NAT & CLOUD.docx
 
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdfUdemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
Udemy_2024_Global_Learning_Skills_Trends_Report (1).pdf
 

RLS Prototype ETL | Vision and Scope Document

  • 1. Vision and Scope Document | RLS Prototype ETL Row Level Security (RLS) Version 1.0
  • 2. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 2 of 8 Vision Pam Lehmann and Brian Leslie have identified a need to enable Row Level Security (RLS) on two Microsoft Applications (AAS and SSRS) in order to service new and existing Sales, Finance, and Operations reports. The source for these reports originate from TricorBraun’s ERP system Microsoft Dynamics 365. There are two Dynamics 365 applications that are currently being considered as sources for this initiative. These Dynamics 365 applications are Sales (CRM) and Finance and Operations. Below are the identified Executive Leadership and Stakeholders from TricorBraun: • Jeff Douglas, VP Sales Effectiveness • Bill Stultz, VP of Finance for System’s Controller, Finance (Executive Champion) • Dave Duxbury, VP of Operations, GSC – Logistics (Executive Champion) • Doug Bolen, Chief Information Officer • Brian Leslie, Senior Reporting Analyst, IT • Donovan Foster, IT Consultant, PMO, IT • Sarah Thomason, Project Manager • Mike Lang, Consultant - RSM Due to the complexity of this initiative, it has been decided to complete a RLS Prototype ETL before we complete the final, expanded Vision Scope Document and the final RLS Design Document. This Vision Scope Document is of limited scope just for the RLS ETL prototype. As the team at TricorBraun identify and finalize the expanded scope, we will document and append to an Expanded Vision Scope Document intended for the final design and development, not the prototype. It has been decided to use the existing Invoicing Data Mart as our destination for the RLS prototype ETL mentioned above. We will be loading one (1) entitlement table that will be used by the SSRS RLS Prototype as well as other security tables to be used by AAS RLS Prototype. (Additional details on the SSRS and AAS RLS Prototypes can be found in their related vision scope documents.) These AAS RLS Prototype tables are UserSecurity, DivisionSecurityBridge, RegionSecurityBridge, and CustomerSecurityBridge. The plan of this development is to load these tables using PowerShell and the PowerShell Active Directory Modules. This development will require a historical update as well as on-going maintenance to all current AD users that will be accessing any RLS implementation. This will allow us to identify AD users who should have access at a certain security level (Total Company, Division, Region, Customer), as well as a key (code) that we can define to help us determine what the AD User should have access to at that security level. To develop and test this RLS Prototype ETL, it will require the help of many other IT Groups and Departments including AD Administrators, HR Administrators, and Development Teams. We will require AD Administrators to create and update AD Security Groups and Group Membership as well as other AD specific requirements detailed below, but most importantly creating test AD Security Groups and Test AD Users described in Appendix A and Appendix B (these test groups and users were originally approved by the team on 3/25/2019 (AAS Vision Scope Document). We will need input and clarification from HR in how to use Employee data to gather a User’s Branch and Branch Role to determine security level access dynamically (if possible; a manual alternative is provided if the dynamic plan is not a viable option). The development team will be creating PowerShell, T-SQL, and DAX scripts to load the tables based on the data entered in AD and the Rules defined between IT and HR.
  • 3. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 3 of 8 Approach This approach has two sides that require separate consideration. • Application (feature) • Database and Model Each side for consideration includes discussions around the two existing SSRS and AAS RLS Prototype projects as well as the current RLS Prototype ETL project. Topics in these discussions will include security and the Invoice Data Mart, SQL Server Objects, Active Directory, PowerShell, HR Software, and Azure Analysis Services. Application (feature) Side For SSRS, this means altering all existing reports (stored procedures) and parameter queries to the design of the test SSRS report created with the SSRS RLS Prototype. For initial development testing, we have created a new version of the SSRS Daily Gross Profit report and new stored procedures for RLS cascading parameters. For AAS, security is role based, not where clause (predicate) based. A role is assigned users (members) by adding AD Groups or AD Users. Members of the role will have a RLS security filter applied that is defined as part of the role. It is recommended to use AD Security Groups to simplify member management. For initial development testing, we have created a Power BI report using some of the metrics from the Daily Gross Profit Dashboard. Last, for the ETL, we will need AD Security Groups and AD Users described in Appendix A and Appendix B. For ongoing maintenance of the data stored in the RLS_AD_ETL table, an ASP.Net [C#] web application will be developed in a future phase. This web application’s intended users are the business users, not IT. Appendix A and Appendix B outline what is required now before this new development can begin. AAS Role Members as AD Users (need Groups)
  • 4. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 4 of 8 Database and Model Side This side for consideration includes the database structures (tables, views, SPs) as well as data models (DAX) in AAS. There have been security related objects created for both the SSRS and AAS RLS Prototype projects as well as the current RLS Prototype ETL project. For SSRS, this means an entitlement table and a security level stored procedure were developed. To provide dynamic parameters filtered by RLS, new parameter stored procedures were developed as well. These stored procedures use if clauses along with the security level returned by a stored procedure to apply a different predicate based on a specific security level (total company, division, region, customer). For AAS, this means four additional security tables and three additional security views. For AAS, we have a model with relationships and roles that include these security tables and views to enforce RLS. Last, for the ETL, we will need a RLS_AD_ETL lookup table and PowerShell scripts that load the security tables based on RLS_ETL_CODES and CSV String stored in table. Brain and the IT team are working on a dynamic solution to determine RLS level access (RLS_ETL_CODES and CSV String for either division, regions, customers, or Total Company) by using TricorBraun’s two HR systems by using employee branch and role at branch data. If this is not possible, a manual process of applying RLS_ETL_CODES and CSV String to an AD User will be required. Row Level Security | Overall ETL Plan PowerShell ETL Invoice DM and RLS Prototype SQL Structures Active Directory Groups RLS_ETL_CODE HR Branch & Branch Role Total Company Division Region Customer T-SQL PowerShell Start ETL SQL Server Job Start ETL SQL Server Job RLS_AD_ETL (ETL Table) RLS_ETL_KeyPK AD_UserName AD_UserEmail RLS_Level RLS_ETL_Code RLS_ETL_Code_Desc RLS_ETL_Code_Category CSV_String AD_UserSAM
  • 5. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 5 of 8 Deliverables Azure Analysis Services RLS has one (1) deliverable: • Development RLS Prototype ETL Start Date: TBD End Date: TBD o Power Shell Script(s) to Load and T-SQL Scripts to Transform Data into Stage and Model Tables ▪ Entitlement ▪ UserSecurity ▪ DivisionSecurityBridge ▪ RegionSecurityBridge ▪ CustomerSecurityBridge. o RLS_AD_ETL Table and Scripts with Default RLS_ETL_CODES o … Add Dynamic Access from HR Applications Clarifications These are the clarification for the RLS project: • Test AD Security Groups and Test Users must be Created and Testes before PowerShell ETL Development Can Begin • PowerShell AD Module requires CN, OU, and DC information (Distinguished Name) created in Advance to use in code CN, OU, and DC are all defined when a new AD Object (Group, Group Member, User) is created by the AD Team • A RLS Key (Code) Needs to be Agreed Upon to enable Dynamic PowerShell Code for Entitlement and Bridge Tables • Production Daily / Weekly Scheduling and Invoice Datamart Load Sequencing of the main (entry) PowerShell Script will be the responsibility of the TricorBraun IT Team. Development testing can use basic, isolated SQL Server Jobs for scheduling • Logic Needed to Dynamic Access from HR Applications (how to dynamically define CSV_String) will be provided by Brian • ASP.Net [C#] web application Planned Features for Future Phase to Manage RLS_AD_ETL Table Load by Business Users o Validate RLS_Level matches CSV_String in terms of Region Level has Regions (only) in the CSV String o Validate Users are only assigned 1 RLS_Level o Allow Drop Down Selection for RLS_ETL_Code_Category ▪ Test uses a Default Category o Get another User’s RLS_ETL_Code and use it to Get the same CSV_String o Allow Custom RLS_ETL_Code Creation for remaining 20% Users that we can’t dynamically define by code o Allow Manual Process to Apply Custom RLS_ETL_Code to a Specific User(s) How to get the Job Done We will be using the following processes and tools to complete this project and deliverables: • Azure DevOps (VSTS) • Team Foundation Services, or Git (TBD), since both are used at TricorBraun for Source Control and Change Management • We are limiting the work-in-progress by using properly planned deliverables • PBIs, Tasks, and Kanban Boards will be used as part of Azure DevOps (VSTS) o Product backlog o Tasks o Weekly PowerPoint Updates o Sprints are not used at TricorBraun • A scope change log for this document will be used to manage change in an Agile fashion o Name o Description (Impact) o Version o Requested By o Approved By o Date
  • 6. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 6 of 8 Change Log Name Description (Impact) Version Requested By Approved By Date
  • 7. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 7 of 8 Appendix A | Test Active Directory Security Groups / Group Members Four (4) Test Active Directory Security Groups • RLS Total Company (Global Scope; Email: RLS-TotalCompany@TricorBraun.com) • RLS Division (Global Scope; Email: RLS-Division@TricorBraun.com) • RLS Region (Global Scope; Email: RLS-Region@TricorBraun.com) • RLS Customer (Global Scope; Email: RLS-Customer@TricorBraun.com) ** WARNING ** Active Directory Security Groups must have their email defined when originally created! Emails for AD Security Groups cannot be updated after being created. Group Members RLS Total Company RLS Test User 1 RLS Division RLS Test User 2 RLS Test User 7 RLS Test User 9 RLS Region RLS Test User 3 RLS Test User 6 RLS Test User 8 RLS Customer RLS Test User 4 RLS Test User 5
  • 8. Vision and Scope Document | RLS Prototype ETL, Row Level Security (RLS) © AIM Business Driven Data Solutions, 2019 Page 8 of 8 Appendix B | Test Active Directory Users Nine (9) Test Active Directory Users RLS Test User 1 FIRST NAME Test LAST NAME User 1 DESCRIPTION RLS Test User 1 OFFICE IT USERLOGONNAME test.user1@tricorbraun.com & tricorbrauntest.user1 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 2 FIRST NAME Test LAST NAME User 2 DESCRIPTION RLS Test User 2 OFFICE IT USERLOGONNAME test.user2@tricorbraun.com & tricorbrauntest.user2 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 3 FIRST NAME Test LAST NAME User 3 DESCRIPTION RLS Test User 3 OFFICE IT USERLOGONNAME test.user3@tricorbraun.com & tricorbrauntest.user3 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 4 FIRST NAME Test LAST NAME User 4 DESCRIPTION RLS Test User 4 OFFICE IT USERLOGONNAME test.user4@tricorbraun.com & tricorbrauntest.user4 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 5 FIRST NAME Test LAST NAME User 5 DESCRIPTION RLS Test User 5 OFFICE IT USERLOGONNAME test.user5@tricorbraun.com & tricorbrauntest.user5 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 6 FIRST NAME Test LAST NAME User 6 DESCRIPTION RLS Test User 6 OFFICE IT USERLOGONNAME test.user6@tricorbraun.com & tricorbrauntest.user6 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 7 FIRST NAME Test LAST NAME User 7 DESCRIPTION RLS Test User 7 OFFICE IT USERLOGONNAME test.user7@tricorbraun.com & tricorbrauntest.user7 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 8 FIRST NAME Test LAST NAME User 8 DESCRIPTION RLS Test User 8 OFFICE IT USERLOGONNAME test.user8@tricorbraun.com & tricorbrauntest.user8 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS] RLS Test User 9 FIRST NAME Test LAST NAME User 9 DESCRIPTION RLS Test User 9 OFFICE IT USERLOGONNAME test.user9@tricorbraun.com & tricorbrauntest.user9 [pre-2000] NOTES TBD during future meetings [Custom Key (Code) to Help facilitate RLS]