Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Write Table now available in Qlik Cloud Analytics: Read Blog
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
justindallasverizon
Contributor III
Contributor III
‎2025-07-22 05:04 PM

Disable Connection w/out Deletion

Hello Folks,

I would like to disable some database connections without deleting them.  I would also like to prevent sa_repository from invoking them too so users can't reload them through the QMC Tasks UI.

I know I can make my custom rule have a clause like "And 1=0", but I don't think that would stop sa_repository from getting a hold of it.

 

Any help is greatly appreciated.

Labels (2)
Labels
318 Views
1 Solution

Accepted Solutions
Levi_Turner
Employee
Employee
‎2025-07-24 08:52 AM

You're right that sa_repository will be able to access the data connection (via rule named ServiceAccount).

I am a fan of @Or 's suggestion to rename the _name_ of the data connection. Even for ODBC (or OLEDB) based connections, the invocation in the load script is via the name of the data connection:

Levi_Turner_1-1753361324609.png

Levi_Turner_2-1753361397862.png

Renaming is a great "sc ream test" to see who uses it. Alternatively, you can audit what apps use the data connection (https://github.com/eapowertools-archive/qs-data-connection-analyzer, warning it may take a while to reload, so you may need to adjust the reload task for >1day).

From an access control standpoint, you could filter out user access via auditing what rules would grant access then adjusting them but to your point, for an existing app which has a reload task, the service user would still be able to access the data connection.

 

View solution in original post

252 Views
0 Likes
3 Replies
Or
MVP
MVP
‎2025-07-22 05:06 PM

If you'd like to prevent them from being used to read data entirely, you could just fudge up the connection details, e.g. by adding a 'z' to the start of the connection string. Any attempt to use this connection to pull data will fail. 

315 Views
justindallasverizon
Contributor III
Contributor III
‎2025-07-22 05:07 PM
Author

In response to Or

That was my first thought, but they are ODBC connections, so they live on the server and not in the QMC =(

314 Views
0 Likes
Levi_Turner
Employee
Employee
‎2025-07-24 08:52 AM

You're right that sa_repository will be able to access the data connection (via rule named ServiceAccount).

I am a fan of @Or 's suggestion to rename the _name_ of the data connection. Even for ODBC (or OLEDB) based connections, the invocation in the load script is via the name of the data connection:

Levi_Turner_1-1753361324609.png

Levi_Turner_2-1753361397862.png

Renaming is a great "sc ream test" to see who uses it. Alternatively, you can audit what apps use the data connection (https://github.com/eapowertools-archive/qs-data-connection-analyzer, warning it may take a while to reload, so you may need to adjust the reload task for >1day).

From an access control standpoint, you could filter out user access via auditing what rules would grant access then adjusting them but to your point, for an existing app which has a reload task, the service user would still be able to access the data connection.

 

253 Views
0 Likes