Install & Configuration - 40%

Question 1

What are the installation steps?

Answer 1

1. Check for: OS, hardware, accounts (Administrative should have permission to install; Run As account?), IIS and port 80, AD domain, drivers
2. Download the Server file
3. Run the file. Follow on-screen instructions to set-up and install the app.
4. Enter in Product Key, activate, and register
5. Restart Tableau Server

Question 2

What is the path to install?

Answer 2

C:\Program Files\Tableau\Tableau Server

Question 3

What gateway port should be used?

Answer 3

80 (often also used by Internet Information Services/IIS)

Question 4

What are the authentication options?

Answer 4

Active Directory
Trusted Tickets
Guest Account
Local authentication
SAML
Kerberos

Question 5

What’s the difference between AD and local auth?

Answer 5

Local authentication works only for Tableau Server, and the admin will have to create usernames and assign passwords. AD is a company-managed authentication service that integrates with many other corporate applications. You cannot switch between options later.

Question 6

Describe the impact of the automatic login option.

Answer 6

Enabling automatic login means that Microsoft SSPI will automatically sign users in based on their Windows credentials. Similar experience to SSO.

Not compatible with SAML, trusted authentication, or proxy server.

Question 7

How do you set up SSL?

Answer 7

1. Get an Apache SSL certificate from a trusted authority and import the certificate files into Tableau Server (C:\Program Files\Tableau\Tableau Server\SSL)
2. Open the Server Config dialog > SSL tab
3. Select “Use SSL for server communication” and provide location for these three files: SSL certificate file, SSL certificate key file, SSL certificate chain file (only required for Mac and Mobile)
4. Changes will take effect next time Server is restarted
   - -bonus: SSL can only use port 443. can’t work anywhere else.

Question 8

What are best practices for installing a single machine environment?

Answer 8

idk

Question 9

What are:

a) the three caching options in the config dialog
b) the differences between them
c) the reasons you might choose one over the others

Answer 9

a) refresh less often, refresh more often, balanced
b) Less often: Data is cached and reused whenever it’s available, regardless of when it was added to the cache
Balanced: data is removed from cache after a specified number of minutes. After removal, a new query will be issued.
More Often: database is queried each time the page is loaded. Dumps cache after user reloads the page.
c) Less Often: use when data isn’t changing frequently, potentially to improve performance
More Often: when users always need to see the most up-to-the-minute data

bonus - these are on the Data Connections tab

Question 10

How do you apply process distribution?

Answer 10

1. Stop Tableau Server
2. Open Server Config dialog. Enter password. Go to Servers tab.
3. Highlight the machine and click Edit. (Must have at least one instance of: backgrounder, active data engine & file store, and repository.)
4. Ok > OK
5. Restart Tableau Server.

Question 11

How do you configure email alerts and subscriptions?

Answer 11

1. Server config utility > Alerts and Subscriptions tab
2. Select check boxes.
3. For alerts: check the SMTP Setup tab. The email address you specify there will be the one that receives alerts.

Question 12

How do you configure SSL?

Answer 12

Place SSL cert and key files on every computer that’s running a gateway process.

Question 13

What are the 3 optional customizations, and how do you configure them?

Answer 13

1. Change Name or Logo (tabadmin)
2. Language and Locale (Server UI, either for the server or for the user)
3. Custom fonts (install on computers that run Server, and that connect to Server)

Question 14

What are the 7.5 Site configuration options?

Answer 14

1. Set storage limit
2. Who can add and remove users (only server admins, or site and server admins)
3. 5 Limit number of site users
4. Web authoring
5. Subscriptions - also custom ‘from’ address and custom footer
6. Allow perf recording
7. Save a history of revisions
8. Create offline snapshots of favorites (mobile only)

Question 15

What are the user quota restrictions?

Answer 15

If site admins are allowed to add users, you can specify how many users they can add to the site.

Question 16

Who can add users?

Answer 16

Either Server admins only, or both site and server admins (you can edit per site)

Question 17

Explain storage quota restrictions.

Answer 17

Workbooks, extracts, and data sources all consume storage space on the server. If you set a server limit and the site exceeds it, publishers will be prevented from uploading new content until the site is under the limit again.

Question 18

How do you enable site subscriptions? How do you edit them?

Answer 18

Site tab > Settings. You have to make sure Subscriptions are enabled in Server config first.

Question 19

Describe the 3 Project configurations options

Answer 19

1. Set permissions for project
2. Set default permissions for content
3. Lock content permissions

Question 20

Describe the Group and User config options

Answer 20

Group: Local or AD
User: Local or AD; site roles; site membership

Question 21

What are your options to add users at the license level?

Answer 21

Unlicensed, Viewer, Interactor

Question 22

What are your options to add users at the Admin level?

Answer 22

System Admin, Site Admin, None

Question 23

What are your options to add users at the Publisher level?

Answer 23

Allow or Deny

Question 24

How do you import users? Describe for both AD and local.

Answer 24

AD: in a site, import group from Active Directory
Local: CSV file (username, password, full name, license level, admin level, publisher permissions, email address)

Question 25

Describe the security configurations for the Site level?

Answer 25

1. Only users added to the Site can see it

2. Can determine permissions for site users

Question 26

Describe the security configurations for the Project level?

Answer 26

Edit permissions per user or group on projects. Can lock permissions to project so that publishers can’t override them.

Question 27

Describe the security configurations for the Group level?

Answer 27

You can set content permissions for a group within a project.

Question 28

Describe the security configurations for the User level?

Answer 28

You can allow Users to inherit default permissions from their group, or you can allow/deny individual users. Check permissions for a user by navigating to content, clicking permissions, and typing in a username in the check permissions box

Question 29

Describe the security configurations for the enable/disable guest user level?

Answer 29

Can only be enabled/disabled by Server Admin, from Server tab > Settings > General

Question 30

Describe the security configurations for the Data Source level?

Answer 30

Admin can set permissions at the data source level

Question 31

Describe the security configurations for the workbook level?

Answer 31

Do not show tabbed views if your workbook uses sheet-level security, because publishing a workbook with tabbed views overrides sheet-level security.

Question 32

Describe the security configurations for the SAML level?

Answer 32

1. Put cert files in C:\Program Files\Tableau\Tableau Server\SAML
2. Open Server Config dialog > SAML tab
3. Provide location for: TS return URL, SAML entity ID, SAML cert file, SAML cert key file
4. Click button to Export Metadata File
5. Save it (TS’s SAML settings) as an XML file
6. Go to your external identity provider’s (IdP’s) website and Add Tableau Server as a Service Provider. IdP should use username as the attribute element to verify
7. Within your IdP, export your IdP’s metadata XML file
8. Copy this file to the folder path in Step 1
9. Put the file path in the Server Config dialog > SAML tab > SAML IdP metadata file

Question 33

Describe the system permission composition?

Answer 33

I know what all the different permission types mean.

Permissions are determined in the following order: Server > Site > Project > Workbook/Data Source > Sheet

Question 34

Name 3 ramifications of permission design.

Answer 34

1. User permissions (when explicitly defined) trump group permissions.
2. Can’t set permissions at the site level - assigned to resources only.
3. For each content item, every site user is automatically included in All Users group. If Server is in a sharing-oriented environment, set permission rule for All Users in Default project to Publisher, so users can publish and consume content from new projects. If Server is in a control-oriented enviro, set permission rule for All Users in Default Proj to role of None. Then add explicit permissions for groups/users to specific projects.

Question 35

Describe the differences between Allow v Deny v Inherit

Answer 35

Inherit: Permission is inherited from the group, not explicitly defined
Allow: grants access
Deny: user/group NOT authorized

Question 36

What is the Tableau Security Model?

Answer 36

decision tree flowchart:

User Denied? > User Allowed? > Group Denied? > Group Allowed?

Question 37

What 4 types of events will trigger an alert email?

Answer 37

1. data engine, repository, gateway server processes stop or restart
2. Primary Server stops or restarts (note: for single-server installations, no “down” alerts are sent)
3. Failover events (only for distributed installations)
4. MUST CONFIGURE FIRST - When unused drive space drops below a specified threshold (warning and critical)