![Site
The Site is the top level of the security hierarchy. Sites are
essentially completely separate Tableau Server instances from the
user perspective.
Users cannot log in to, or view, any information about Sites to
which they do not have access.
The base Tableau Server site is known as the Default Site. Users
that belong to more than one site must choose which site they
want to see when they log in.
Additional Tableau Server sites are accessed using a name
extension string appended on the URL using this format:
(/t/[name]).](https://image.slidesharecdn.com/tableau-powerpoint-170925181534/85/Tableau-powerpoint-17-320.jpg)
Tableau powerpoint
- 1. Tableau Server Time to Lockdown Rod Menken UIHC Tableau User Group
- 2. Tableau Security - Coming to the Forefront Tableau has grown like wildfire and has grown beyond the original scope of what was intended or envisioned Originally planned for hundreds of UIHC staff, with everyone expected to have access to everything. But, when we want to share a workbook with someone that doesn’t have access to Tableau Server, Tableau Reader provides a free alternative. Distributing content with Tableau Reader requires that you save the Tableau workbook file as a packaged workbook. Tableau Packaged Workbooks (.twbx) require local file sources such as Excel, Access, text files(.csv,.txt, etc), Tableau data extract files(.tde)
- 3. Tableau Growth Users and Views
- 4. More on Tableau Reader If the data source for the workbook we want to share with Tableau Reader comes from a server-based database (SQL Server, Teradata, Oracle, etc.), we must extract the source data first— saving extracted data as a Tableau Data Extract—then save the workbook as a Tableau Packaged Workbook. Tableau Reader is intended to make your workbooks available to anyone— even those that do not have a Tableau licensed product. There are security considerations that we should be aware of when we distribute workbooks through tableau reader. Do not rely on filters to shield sensitive data that is included in the data sources used in the workbook. Tableau packaged workbooks are like zip files. They can be unpackaged which will expose the data source file.
- 5. Tableau Online Tableau offers a cloud-based option called Tableau Online. This service provides a low cost alternative to sharing workbooks with licensed users of the service. Tableau Server is a self-managed solution that can be maintained inside or outside of our organization’s firewall. Workbooks are published to Tableau Online or Tableau Server. People consuming the workbooks are granted access to them by a designated administrator that controls security. The process for publishing workbooks to Tableau Server or Tableau Online is similar. Once the workbook has been published, authenticated users are able to access it using a web browser.
- 6. Tableau Server Tableau provides three different tools for sharing information— Tableau Public, Tableau Online, and Tableau Server. Tableau Public is a free cloud-hosted service aimed at bloggers, students, or data visualization enthusiasts that want to share their work publically. It is not designed for enterprise environments that require data security. In fact, any- thing published on Tableau Public is freely available for anyone to download. Tableau Server is for customers that need to control where and how the data is stored and managed. It can be installed on hardware behind your firewall or on cloud services that you contract with directly.
- 7. Reasons to deploy Tableau Server Server’s architecture provides the flexibility to scale from a single box to large multi-server deployments. User-friendly tools are provided for setup and maintenance of access rights, scheduling, and notification. Once setup is complete, continuing administration is normally minimal. Downloading and installing Tableau Server normally can be done in less than two hours. There are three primary reasons to deploy Tableau Server: 1. Data governance (security) 2. Efficiency (time savings) 3. Flexibility (consumption and editing options)
- 8. Tableau Server Architecture Tableau Server is comprised of several processes operating together. These may run concurrently, but typically all processes won’t be running all of the time. These include: 1. Application Server (wgserver.exe) 2. VizQL Server (vizqlserver.exe) 3. Data Engine (tdeserver.exe, tdeserver64.exe) 4. Backgrounder (backgrounder.exe) 5. Data Server (dataserver.exe) 6. Repository (postgres.exe)
- 9. More on architecture The application server handles requests to the web application such as searching, browsing, logging in, generating static images and managing subscriptions. The VizQL server handles the task of loading and rendering requested views. The data engine receives queries made to Tableau Data Extracts present on the server. These queries come from the VizQL processes. To service these queries, the Data Engine loads the Tableau Data Extracts into memory and returns the requested record set.
- 10. More on architecture The backgrounder runs maintenance tasks and data extract refreshes. The data server handles requests to Tableau Data Sources. These requests can come from the Tableau Server or from Tableau Desktop users. The repository is the Postgres database Tableau Server uses to store settings, metadata, usage statistics and workbooks.
- 11. Licensing Tableau Server can be licensed by two different ways: 1. Per-named-user basis 2. Server core license Core licensing provides unlimited access to any number of users. Pricing is based on the number of processor cores contained on the physical box or multiple boxes on which we deploy the software. Per-named-user licensing starts with a minimum of ten users. Core licensing requires an eight-core mini- mum. Although many factors can affect performance in a server deployment (hardware, network traffic, dashboard design), an eight-core configuration can support up to 225 concurrent users.
- 12. Authentication Tableau Server can be configured to authenticate users in one of two ways: 1.A Local Authentication 2.An Active Directory Authentication (ADA) It is very important that you choose the authentication method carefully because this cannot be changed once the server is installed. In the Local Authentication option users are added to the server by configuring a username and a password. In the Active Directory authentication option, users who are added to the Tableau Server must already exist within Active Directory.
- 13. More on authentication Active Directory manages the user’s password. Selecting Active Directory authentication allows clients to reuse their existing security structure. Be sure to enter the domain name and nickname when choosing to authenticate with Active Directory. This domain name must be a fully qualified domain name. Using the (ADA) method allows an additional option—Enable Automatic Log-on. This option enables users to automatically log in to Tableau Server with the currently logged in Windows account credentials via the Microsoft Security Support Provider Interface (SSPI).
- 14. Workbook The Workbook object represents the Tableau workbook file published from Tableau Desktop. It contains dashboards and worksheets, which in terms of Tableau Server are all known as Views. Permissions can be applied to specific Views within a Workbook or at the whole Workbook level. Workbooks and Views can belong to projects and must be published to a site.
- 15. User The User object represents a named-user who has access to the Tableau Server. Users must be granted a licensing level of Interactor or Viewer to log in to the server. It’s possible to leave a user account on the server in an effectively dis- abled state by setting its licensing level to unlicensed. This can be useful for audit purposes. Users can be granted access to Views, Workbooks, Projects, and Sites. They can also be placed into groups. Unlicensed Tableau Server users (that have been given publishing rights) can publish workbooks to Server even when they cannot view the published results on the server.
- 16. Project and Group The Project is an object used to organize and manage access to Workbooks. Workbooks are placed into Projects within a Site. This can be used as an organization tool by placing Workbooks with similar content into a single project. It can be used as an access restriction tool by granting access to a Project to a user or group and then publishing Workbooks into that Project. The Group is an object used to organize users in Sites on the Tableau Server. Users can be placed into Groups and these Groups can in turn be given permissions to objects on the server. Groups can be created locally on the Tableau Server or, if Active Directory authentication is in use, they can be imported from an Active Directory Group. Groups make managing user permissions within Tableau Server much easier.
- 17. Site The Site is the top level of the security hierarchy. Sites are essentially completely separate Tableau Server instances from the user perspective. Users cannot log in to, or view, any information about Sites to which they do not have access. The base Tableau Server site is known as the Default Site. Users that belong to more than one site must choose which site they want to see when they log in. Additional Tableau Server sites are accessed using a name extension string appended on the URL using this format: (/t/[name]).
- 18. Permissions Where sites define separate work environments in Tableau Server, permissions define what users or groups are permitted to do within a site. The Interactor role represents the common user who can access and use Objects but not edit them. The Publisher role allows users to publish reports from Tableau Desktop to the server. The Editor role allows the user to make changes to Workbooks. There are two administrative permissions that can be granted at the Site and Instance level—System Administrator and Site Administrator.