Required Permissions

Many of the Application Service accounts need db_owner. These accounts issue updates to the database that may alter the schema of the database. Below is a comprehensive list of each account and their required permissions.

•   Application Pool Identities:

o   Workbench Server Application Pool:

■   User and Administration database:

•   db_owner

■   LegiTest Server database:

•   db_owner

■   LegiTest Command Line Execution and Task Scheduler:

•   Local Security Policy:

o   Log on as batch job

•   Any permissions (databases, report servers, file system, et cetera) required to successfully run a LegiTest Test Suite deployed to the server

o   BI xPress Application Pool:

■   BI xPress database:

•   db_owner

■   SSIS Monitoring Console:

•   For importing package layouts from SSIS Catalogs:

o   db_datareader

■   SSRS Monitoring Console:

•   SSRS ReportServer database(s):

o   db_datareader

o   DOC xPress Server Application Pool:

■   DOC xPress database(s):

•   db_owner

•   DOC xPress Data Handler Service:

o   DOC xPress database(s):

■   db_owner

o   Local Security Policy:

■   Log on as a service

•   DOC xPress Remote Agent Required Permissions

o   Local Security Policy:

■   Log on as a service

o   Technology specific permissions:

■   Hive

•   Read permissions for the HDFS files that you wish to document

■   Informatica

•   View definition permissions on the Informatica repository

•   Read permissions within the Informatica repository on any folder and object you wish to document

■   SQL Server

•   Definition permissions for any object you wish to document

■   SQL Server Analysis Services

•   Multidimensional:

o   Read definition permission on each database object you wish to document

•   Tabular:

o   Administrator permission on each database object you wish to document

■   SQL Server Integration Services

•   SSIS Catalog:

o   Read and Modify permission for each project within the SSISDB the user wishes to analyze

■   SQL Server 2008 R2 (or higher) Reporting Services

•   Folder Security Settings:

o   Minimum Predefined User Roles required:

■   My Reports

■   Content Manager

o   Minimum Tasks required for a custom User Role:

■   View Reports

■   View Folders

■   View Data Sources

■   View Models

■   Consume Reports

•   Web Service Security Settings:

o   Minimum Predefined System Role required:

■   System User

o   Minimum Tasks required for a custom System Role:

■   Execute Report Definitions

■   Oracle Permissions

•   Connect permissions on any schema that you wish to document

■   Tableau Permissions

•   User must be a part of the Server Administrator role