使用 Visio Services 搭配 Secure Store Service in SharePoint ServerUse Visio Services with Secure Store Service in SharePoint Server

摘要:Secure Store 可用來儲存加密的認證為使用中重新整理資料連線中的 Visio Services 的 Visio 圖表。Summary: Secure Store can be used to store encrypted credentials for use in refreshing data-connected Visio diagrams in Visio Services.

Visio Services 可以設定為使用 Secure Store Service 的使用例如 SQL Server 的外部資料來源的資料連線圖表提供使用者。Visio Services can be configured to use the Secure Store Service to provide user authentication for data-connected diagrams that use an external data source such as SQL Server.

注意

本文假設您已部署 Secure Store Service 服務應用程式。如果您尚未部署 Secure Store,請參閱 < Plan Secure Store Service in SharePoint Server設定 Secure Store Service in SharePoint ServerThis article assumes that you have already deployed a Secure Store Service service application. If you have not deployed Secure Store, see Plan the Secure Store Service in SharePoint Server and Configure the Secure Store Service in SharePoint Server.

Secure Store 提供之對應使用者沒有直接的資料存取帳戶具有資料存取方法。Secure Store 與 Visio Services 可以搭配下列順序基本的事件:Secure Store provides a method of mapping users who do not have direct data access to an account that does have data access. Secure Store and Visio Services work together in the following basic sequence of events:

  1. 使用者存取 SharePoint 網站上的資料連線圖表。A user accesses a data-connected diagram on a SharePoint site.

  2. Visio Services 會將使用者的身分識別傳遞至 Secure Store。Visio Services passes the user's identity to Secure Store.

  3. Secure Store 會決定使用者是否有權存取資料。若是如此,Secure Store 會返回 Visio Services 資料存取認證。Secure Store determines whether the user is authorized to access the data. If so, Secure Store returns the data access credentials to Visio Services.

  4. Visio Services 模擬資料存取認證、 存取資料,並向使用者顯示資料。Visio Services impersonates the data access credentials, accesses the data, and displays the data to the user.

Visio Services 提供三種使用 Secure Store 來提供資料存取方法:Visio Services provides three methods of using Secure Store to provide data access:

自動服務帳戶: 自動的服務帳戶是由 Visio Services 用來提供廣泛的資料庫存取權給伺服器陣列中的所有使用者帳戶。使用自動的服務帳戶存取,不會被視為為機密或其中您不想限制特定使用者群組存取資料。如需如何設定此案例的資訊,請參閱 < Configure Visio Services 資料重新整理在 SharePoint Server 2016 使用自動的服務帳戶Unattended Service Account: The unattended service account is an account that is used by Visio Services to provide broad database access to all users in the farm. Use the unattended service account for accessing data that is not considered sensitive or where you do not want to restrict access to a certain group of users. For information about how to configure this scenario, see Configure Visio Services data refresh in SharePoint Server 2016 by using the unattended service account.

外部資料連線: 您可以在 Office 資料連線 (ODC) 檔案中指定的安全認證儲存目標應用程式,然後連線至在 Visio 中的 ODC 檔案。當您將圖表發佈至 SharePoint 文件庫時,它會保留其連線至 ODC 檔案。Visio Services 重新整理活頁簿中的資料時使用的 ODC 檔案中的連線資訊。使用 ODC 檔案有下列優點:External Data Connections: You can specify a Secure Store target application in an Office Data Connection (ODC) file and then connect to that ODC file in Visio. When you publish the diagram to a SharePoint document library, it maintains its connection to the ODC file. The connection information in the ODC file is used when Visio Services refreshes the data in the workbook. Using an ODC file has the following advantages:

- <span data-ttu-id="e1941-p106">多個圖表可以參照單一的 ODC 檔案。如果資料來源連線參數變更 (例如,如果您想要使用的不同比原先指定安全認證儲存目標應用程式) 您只需要更新的 ODC 檔案並不自己的圖表。</span><span class="sxs-lookup"><span data-stu-id="e1941-p106">A single ODC file can be referenced by multiple diagrams. If the data source connection parameters change (for example, if you want to use a different Secure Store target application than the one originally specified) you need only update the ODC file and not the diagrams themselves.</span></span>

- <span data-ttu-id="e1941-p107">使用 ODC 檔案可讓系統管理員建立和維護組織使用的資料連線。您可以為使用者建立適用的資料連線,將它們放置在信任的資料連線文件庫,然後通知使用者查詢時要使用哪些 ODC 檔案。</span><span class="sxs-lookup"><span data-stu-id="e1941-p107">Using ODC files allows administrators to create and maintain the data connections used by the organization. You can create data connections appropriate for users, place them in a trusted data connection library, and then notify the users of which ODC files to use for their queries.</span></span>

<span data-ttu-id="e1941-127">如需如何設定此案例的資訊,請參閱 < [Configure Visio Services 資料重新整理使用外部資料連線的 SharePoint Server 中](configure-data-refresh-by-using-external-data-connections.md)。</span><span class="sxs-lookup"><span data-stu-id="e1941-127">For information about how to configure this scenario, see [Configure Visio Services data refresh in SharePoint Server by using external data connections](configure-data-refresh-by-using-external-data-connections.md).</span></span>

Visio 是用來建立圖表,不使用 Secure Store 的資料驗證。您必須為圖表作者設定直接資料存取權。將圖表發佈至 SharePoint 網站、 Visio Services 可以使用 Secure Store 時加以呈現圖表。Visio, which is used to create the diagrams, does not use Secure Store for data authentication. You must configure direct data access for diagram authors. Once the diagram has been published to a SharePoint site, Visio Services can use Secure Store when it renders the diagram.

另請參閱See also

概念Concepts

商務智慧服務應用程式的 secure store ServiceSecure Store for Business Intelligence service applications