System Level Security

System-level Security

System level security and Sisense

System-level security encompasses role-based access options. This includes user and server management, connection to an active directory, Single Sign-On (SSO), and the security REST API.

User and Group Management

Organizations can assign one of three primary roles to Sisense users or groups:

ElastiCube Server Access Rights

Organizations can assign access rights to different ElastiCube servers for individual users, groups or to everyone.

Active Directory

An organization’s Active Directory can be leveraged to reduce deployment time by applying existing security policies and sharing properties to the Sisense Application.

Single Sign-On (SSO)

SSO facilitates seamless integration between Sisense and other systems while offering standardization of authentication policies. Sisense can integrate with either SAML 2.0 or JWT based SSO.


The REST API provides the ability to automate and customize system security settings to fit a particular environment and security policies. The API can be used to integrate and automate restrictions and access control based on rules and standards, as well as to specify access rights and security to dashboards, ElastiCubes and data. The API can also be used in user management to create, edit and assign new users or groups.


The Sisense web interface fully supports encryption using standard SSL to ensure privacy and security. Sisense encryption is compliant with the Federal Information Processing Standard (FIPS 140-2).

Sisense encrypts sensitive information such as account credentials and authorization profiles for Sisense and for data source connections before writing to disk. Sisense uses the following encryption algorithms: SHA-256, Triple DES, AES-256.

Operating System based disk encryption, Windows file system encryption – Transparent Data Encryption (TDE), can be used for encrypting data at rest. When using Windows transparent encryption, the key pair (private/public) is bound to the user identity.

Data imported into and retrieved from Sisense can also be encrypted. For data import into Sisense, the import protocol depends on the protocols supported by the data source. Sisense also supports SSL for data movement from the Sisense Web Server into the user’s the web browser.

Tracking and Monitoring Data

Upon installation, Sisense collects data for internal and support related purposes such as improving customer experience and resolving technical issues. At no time is any personal information collected and all personal identifiers can be obfuscated. Additionally, tracking and monitoring of data can be turned off at any time.

Learn More About Sisense Security