🔑

Problem Scenario

Too many people can see everything

MEDIUM5 controls

How do I restrict over-broad access permissions?

// Quick Win

Run the catalog-level privileges audit — you'll immediately see who has over-broad access and can start revoking

// Visualization

Solution Overview

🔑

Too many people can see everything

UC-001

Enable Unity Catalog Audit Logging

AC-001

Implement Role-Based Access Control (RBAC)

AC-002

Implement Attribute-Based Access Control (ABAC)

AC-003

Privileged Access Management - Service Principals

AC-004

Dynamic Views for Row and Column Filtering

React Flow

This graph shows the 5 recommended controls for solving this problem

// Implementation

Step-by-Step Solution

// Related

Related Controls

UC-001

Critical

Enable Unity Catalog Audit Logging

Audit & Compliance

AC-001

Critical

Implement Role-Based Access Control (RBAC)

Access Control

AC-002

High

Implement Attribute-Based Access Control (ABAC)

Access Control

AC-003

High

Privileged Access Management - Service Principals

Access Control

AC-004

Medium

Dynamic Views for Row and Column Filtering

Access Control

Back to Problems Browse All Controls

Too many people can see everything

Solution Overview

Step-by-Step Solution

Audit Current Permissions

Design RBAC Groups

Revoke Over-Broad Permissions

Add Fine-Grained Controls Where Needed

Related Controls

Too many people can see everything

Solution Overview

Step-by-Step Solution

Audit Current Permissions

Design RBAC Groups

Revoke Over-Broad Permissions

Add Fine-Grained Controls Where Needed

Related Controls