Authorization is the granting of access rights to a user, program or process.
ArcGIS Provides Role Based Access Control (RBAC) out of the box
- Security to service level
- ArcGIS Manager can be utilized to assign access to services and services can be grouped into folders which utilize inheritance to ease management
- Authorization managed across Esri product lines
Showing or hiding content based on role
- Limit GUI via ArcObjects and/or Web-Tier
- Sample in Developer Kit – “Common_Security”
- Silverlight Blog
- AzMan – Tool from Microsoft to design and implement role-based authorization if you want to design a more fine-grained role-based authorization approach around operations and tasks, and if you want the additional flexibility of allowing an administrator to create, delete, and administer the permissions assigned to a role at run time.
Advanced level security
Utilize Row Level or Feature Class Level security of Relational database models
- Use of multi-Versioned instances may significantly degrade RDBM performance
- SDE Views can be utilized to restrict access as an alternative
Frequently different roles are provided access to different protocols and services outside of ArcGIS Server security settings as seen below:
