Leveraging database security features for both row and column-level security
We often don’t need to create RLS for users in Tableau as user security is already handled by database servers. Some database servers also have column-based security. As an example, you might want to let the human resources department see everything about employees except the data contained in the salary column.
If security is already set in the database, Tableau will respect the security in the database. However, the default behavior is to prompt the user inside Tableau. This is not the best user experience. To enable a better user experience, we want to enable Tableau to pass the user credentials they used to sign in to Tableau to the database so that they don’t have to sign in a second time.
Tableau allows for single sign-on (SSO) with some databases. There are a few techniques for SSO, depending on the database technology, including impersonation, initial SQL and Kerberos, and constrained...
