Ques:
A developer needs access to sensitive datasets for a two-day project. How do you grant this access while ensuring it is automatically revoked after the period?
Ans:
In SAP Datasphere, to grant temporary access to sensitive datasets for a limited period, and ensure automatic revocation, we can perform the following steps:
– We can use time-bound role assignments via identity and access management. Here, we can create the roles with the required access and assign temporary roles to them. These roles should be assigned with a definition validity period, like SAP Datasphere provides us the option to set validity dates for all the role assignments.
– We should always use separate roles for all the temporary accesses and always use the concept of the least privilege principle, like only including the exact permissions that are required.
Thus, this is an easy way to take care of all the temporary access required for a shorter period.
For More Such QnA on Datasphere for Quick Revision, you can check out: https://topmate.io/vartika_gupta11/1639897