Answers generated from Webex transcript and chat interactions
Q: I am new to QS, do you have suggestions for learning materials?
A: So definitely check out our community for learning materials. There’s a tab called Learn and there’s different repositories from documentation, videos, and we also have this learning dashboard, which filters all of our resources based on learning level and topic and persona, so if you’re an author or a developer, you can go ahead and filter all of our resource resources through that. And then this is the link to that learning dashboard. And it’s also really cool because it’s integrated already with the quicksight interface, so you’ll be using quicksight while exploring some learning resources.
https://democentral.learnquicksight.online/#Dashboard-LinksAndInfo-Learning-Resources
Q: Could the resulting dashboard be embedded via anonymous embedding?
A: Yeah. That dashboard that the other requirement for that to happen, it just looks like any type of anonymous embedding is that you would have to have session based pricing in place for the account. But if you have that in place, you can go ahead and use our SDK, use the apis, and embed that anonymously.
Q: Can you create a quicksight dashboard pulling data from multiple data sources at the same time?
A: Absolutely, so in the demo that I showed there, I just pulled from one data source, but if I had that data source from Athena I had that other data source from, from redshift, I’d be able to create one data set, join those two data sets together and create the final data set which then can be analyzed, that data will be ingested into spice and made available to the dashboards.
Q: Is Identity Center required to use secured folders?
A: The answer is no. It is not required. I’m just using it to simplify and to demo the integration with identity providers.
Q: Is there anyway to not block select all option from filter when using dataset parameters?
A: I would have to check that out. I think it’s a good question. I’m gonna have to I would have to research that to give you a an answer and check with the dataset parameters to see if that can be blocked or if there’s a plan to do that. I remember hearing something about that, but I haven’t actually played with it myself in terms of the, the select bell.
Q: So If I wanted to support multiple customers based on a SaaS model, I can use subfolders. Can I also use different IdP’s per customer?
A: Great question. Yeah, you can use, you can use folders or subfolders, for a SAS model and maybe use different restrictive folders or there’s also the native feature for namespaces for, for separating the users from those different SaaS tenants. So the question about different IDP. These per customer, that becomes a requirement on identity center to support multiple IDPs. As of today, it does not support multiple IDPs, but I do believe that that is, that is planned at some point in the future. I would have to check with the identity center team that there’s other 3rd party IDPs that do support kind of federating other IDPs in them. So if you’re using a an IDP like that, then you’ll be able to integrate IDP Center with that IDP to manage maybe multiple iIDPs in one IDP.
Q: Does that SPICE data set inherit the security?
A: So the SPICE data does not inherit any security from anywhere. When you bring in data to SPICE, it is a responsibility of the author to define row level of security on that SPICE data set. If leveraging direct query and connecting to redshift, there is a feature called trusted identity propagation that would allow you to inherit the permissions at the reader, this is when using Identity Center, it would allow you to inherit the the permissions defined in redshift. For authors and for readers. So that would allow you to inherit those permissions at the source when using direct query with the redshift. We will plan, we do have plans to support Athena, excuse me, Went away. We do have plans to support Athena and S3 with trusted propagation, but you can reach out to us for more information on that.
Q: I created a quicksight account with qs managed users and need to sso and it should appear as an app in the aws access portal, is there any way? without using identity center option?
A: So in that case, and you’re using depends on your IDP, you’re able to use that. So you can create an application in AWS to access quicksight. We have we have documentation and examples on configuring SSO. with, the different versions of it, whether it’s through external provider or through the internal provider, we have a few blogs that we can, that we can share about that, but it it is possible to configure, you just have to configure the application and configure SSO on the quicksight side. And all this and the, you know, the SAML attributes in between to provision those users. If you’re using quick site managed users though, then they’re not managed through SSO. So in order for that to work, you have to use I am federated users, not quicksight managed users.
Q: Is there any update if quicksight will be able to show real time data in the future? At this time it says an hourly data refresh in SPICE
A: So, when using SPICE and when using incremental refresh, you’re able to update your spice data up to a 15 min interval. If you’re using direct query, you’re able to query that data at the source at the time of loading a dashboard. So upon the dashboard being loaded, that data will be as fresh as the date of the data set at that point in time. We do have a capability that can be enabled as well if you’re on session based pricing to auto refresh the visuals in a 62nd interval.