[Music] hello all in this video we'll discuss about too's new feature access analyzer access analyzer is an application that helps the administrators and developers to view permissions for the selected user role or group now let's discuss about the benefits of access analyzer access analyzer help helps us analyze access to resources generate a report on a user who has access to a particular table it helps us prevent from over provisioning permissions and also helps us limit access to certain data which includes applications tables Etc now let's see how access analyzer Works in real time in the instance access analyzer gives us options to analyed by user group role we'll be seeing an example for each of these options we will show you with an example on how to evaluate the access permissions let's take a CIO as an administrator I want to understand access permissions to incident table let's try the first option analyze by user let's select the user as able tutor and select the table as instant and click on analyze permissions this will take us to access results page which shows information about the access permissions on the instant table so let's go through one each of these columns one of one by one and see what they're really meant for operation so operation is nothing but the type of operation uh on the particular table or the resource you can see this listed it delete report on create report read write Etc so these are the all kinds of operations on the particular table next column is overall access you can see for few of the operation itties is blocked and few it is passed it means uh the particular able tutor has access to create incidents on the instant table but he doesn't have access to delete instant records on the instant table now coming to next column ACL we can see this undefined blocked and passed passed means uh there's an ACL and able tutor satisfies the criteria to create the records block means there's an ACL defined but the particular user doesn't have access to do that particular operation for example you can see the delete uh abl tutor doesn't have permission to delete records on instant table similarly undefined means there's no particular un particular ACL defined for this particular operation so normally what happens is the uh the user is blocked from doing executing that particular operation so this is about the data shown on the access results now when we click on the particular operation for example delete it will take us to the debug logs where you can see uh required ACL roles so it means what is particular role is required for the able tutor to delete the records in instant table so able tutor requires itl admin to delete records on the instant table when we click on the further on the access control it will take us to the access control uh page where it shows more giv us more information about how the rule has been uh created now let's go back and check for the group analyze by option now let's select group we'll take the group as help desk and keep the table as it is and see what all permissions are there for the help desk group when we click on analyze permissions we can see uh even the help disk people uh users doesn't have access to delete the records on instant table similarly they have few uh few access permissions like creating a records writing uh uh editing the records on instant table and reading the records on instant table but they don't have other option to delete the records on instant table now this is about the group option in the access analyzer now let's see a quickly check on Roll option now I'll take the itl admin and see keep the table as it is uh instant table and click on analyze permissions you can see the delete operation uh overall access for the itl admin role is passed it means that uh itl admin has permission to delete records on instant table that that's about uh the three options uh role user and group let's go back and see what all options uh access analyzer provides so here we can see there's a rule type uh here we can see we can analyze the RO user permissions access permissions for client callable script include UI page and rest end points again I will take an example for client call script include I have created a sample uh script include called access analer test I'll check for the role it admin now let's see what happens you can see uh the execution operation for uh the script include is blocked for the itl admin it means uh the particular itl admin doesn't have the required role to do execution of the script include now when we click on the execute it says required role ACL roles is itl so now let's go back and check for with ideal role now click on analyze permissions you can see the overall access is showing as pass and the ACL also pass means the itl role has access to execute the access analyzer test script to include the more features on access analyzer is uh one of the features on access analyzer is here you can export the results so it helps us to like create a report on the access and access results another feature of access analyzer would be when you click on the access in filter Navigator you can see access queries so whatever queries we are doing in the access analyzer page they are being stored here you can certainly come back and you can certainly look what all queries you have done and you can also rerun those queries so that is about access Ander thank you