I have a lot of Explorers (Can Publish), most of whom should not actually have the ability to publish. Is there a good way to identify if they have that role based on a group setting, or whether it was given to their personal usernames? We want to keep the Explorer (Can Publish) role for a few key groups, but the majority of current users would be moved down to regular Explorer access so I’m looking for the best way to identify who should be removed.
Is this possible using the Postgres repository? Has anyone seen this requirement before?
Thank you!
Sarah
Hi @Sarah Rubel
Here is a link that might help you understand how to query license information.
https://help.tableau.com/current/server/en-us/license_product_keys.htm
This won't be much help to you unless you're using Role-based licensing.
If you are using core-based licensing, there is no specific way to find out how users got their site role. However, if your site admin(s) didn't make the change manually, then there is a good chance it was 'assigned on login' based on the minimum site roles for a Group.
If you feel too many Explorer (Can Publish) are being created, I would recommend auditing the server's group settings.
There is a Public.Roles table in the Porstgres. You can see the current role and when it was updated, but it won't tell you 'how' the role was assigned.
Cheers,
Laura
