Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Dynamic Role Based Data Masking

Dynamic Role Based Data Masking

New Contributor

I need to show/hide/mask data based on user role.  Is it possible to setup a role and associate with a policy where column level data will be masked based on the effective_user's role?  So if userA is a member of roleX he can view the sensitive data, but userB is not a member of roleX so he sees the masked data.  Same select statement from two different users returns different results based solely on role.  

2 REPLIES 2

Re: Dynamic Role Based Data Masking

New Contributor

I see that others have solved this with a combination of Impala UDF + View by grabbing the effective_user() and then looking up roles when a query is executed.  Any other options to solve ths?

Highlighted

Re: Dynamic Role Based Data Masking

Explorer
Any update on this? Did you solve this by any means? I am looking at exact functionality in 2019, but, don't see any option other than sensitive data redaction option (don't think it's user/role based though).