Manage Access to the Amazon SageMaker Catalog Source

Alation Cloud Service Applies to Alation Cloud Service instances of Alation

Enhanced Connector Enhanced connectors add extended capabilities and require a separate entitlement in addition to your Alation platform license.

When you use the Amazon SageMaker Catalog Enhanced connector, you create a dedicated data source type specific to this connector: a SageMaker data source. This data source type becomes available automatically when the connector features are enabled in your Alation instance.

The SageMaker data source includes privacy settings and can be configured as either public or private, depending on how you want to control visibility and access. By default, SageMaker sources are public.

You can manage the visibility of a SageMaker source from the Access tab on its Settings page.

A SageMaker source can be either public (visible to all users) or private (visible only to specific users and groups designated by a SageMaker Source Admin). By default, SageMaker sources are public.

You can manage the visibility of a SageMaker source from the Access tab on its settings page.

Note

SageMaker sources are not available by default and can only be added to the catalog if they have been enabled for your instance by Alation Support. These steps assume that SageMaker support is already enabled.

SageMaker Source Privacy

Users can access a SageMaker source as Source Admins or Viewers:

  • Source Admins — The SageMaker Source Admin access allows editing the settings page, including managing access to the SageMaker source, changing the connection parameters, scheduling, and running metadata extraction (MDE).

  • Viewers — The Viewer access allows viewing the SageMaker source and its child objects in the catalog, including finding them with Alation Search.

By default, you can set SageMaker sources to one of two privacy modes. The modes are described in the table below.

Privacy Mode

Description

Public

  • By default, everyone has Viewer permissions

  • Only selected people or groups have Source Admin permissions

  • You can add multiple Source Admins

  • Default permission level for new members is Source Admin

  • Server Admins always have permissions to edit access settings

  • On a SageMaker source, Server Admins must give themselves Source Admin permissions to the SageMaker source before they can edit other settings

Private

  • Only selected people have permissions

  • On a SageMaker source, Admins can add members with any permission level

  • On a SageMaker source, the default permission level for new members is Viewer

  • For child objects of a SageMaker source, new members inherit their permission level from the source; if they have no permissions on the SageMaker source, their permission level is Viewer

  • Server Admins always have permissions to edit access settings

  • On a SageMaker source, Server Admins must give themselves Source Admin permissions to the SageMaker source before they can edit other settings

Manage Access to a Public SageMaker Source

To manage access:

  1. Open the Access tab of your SageMaker source settings.

  2. Under the People section, on the right of the Source Admins table title, click the +Add button. A quick search list will open.

  3. Start typing the name of a user or group in the search field. Search will provide dynamic prompts that you can select from. Select the user or group you want.

  4. The user or group you selected will be added to the Source Admins table. These users now have Source Admin access and can view and edit the SageMaker source settings.

Manage Access to a Private SageMaker Source

To grant or revoke access to or from users and groups:

  1. Open the Access tab of your SageMaker source settings.

  2. Under the People section, on the right of the Viewers & Source Admins table title, click the +Add button. A quick search list will open.

  3. Start typing the name of a user or group in the search field. Search will provide dynamic prompts that you can select from. Select the user or group you want.

  4. The user or group you selected will be added to the Viewers & Source Admins table. Initially, all newly added users or groups are Viewers.

  5. To change the access level to Source Admin, use the dropdown list in the Access Level column. Select Source Admin from the list.

Revoke Access

To revoke SageMaker source access from a user or group:

  1. Locate the user or group in the Source Admins table (for Public sources) or the Viewers & Source Admins table (for Private sources), depending on your SageMaker source’s privacy setting.

  2. For this user or group, click Remove in the rightmost column of the table. The user will be removed from the table.

    Note

    You cannot remove Source Admin access from the last remaining SageMaker Source Admin.

Access for Server Admins

Users with the role of Server Admin can grant the SageMaker Source Admin access to themselves on any SageMaker source.

To grant access:

  1. As a Server Admin, open the catalog page of a SageMaker source.

  2. On the top right of the page, click More and then Settings.

  3. The Edit Your Permissions to Access Settings dialog will open. In this dialog, click Go to Access.

  4. You’ll land on the Access tab of the settings. Other tabs will be disabled until you’ve opened access to yourself. Use the information in SageMaker Source Privacy to grant yourself access.