Alteryx Server Ideas

We are looking for the ability to use Alteryx as PaaS in the Azure cloud similar to how Databricks is working on Azure. So servers spin up when demand shows up and then they spin down.  Where we are not on the hook for server patching etc., but instead, we lease processing power/time from Alteryx in the cloud on an as needed basis. The licensing model will also need to be a scalable to support this type of usage.

It would be great if each user could persist their gallery UI sorting/view changes and leave them as default. When I log in I nearly always immediately switch to list view and sort by most recent modified. This means everytime I access a set of workflows there are at least 3 click actions before I can even start working.

Hello Alteryx Team,

we would like to customize SAML login with additional claims (departement)?

We want to grant authentication based on claims we are using in addition of firstname, lastname, email. 

So we need custom code as well, is this possible to integrate or merge with alteryx code ?

simple example would be:

we add city to the claims and on user with from city "New York" will be accepted all others will get access denied page.

Best regards,

Heinrich

The search for replacing a workflow is poor (and I get that it is probably challenging to write on the back end) but as a result even if I type in the exact title of the workflow (aka copy and paste) Alteryx replace can't find it. Not only does this mean I have multiple workflows with the same name running around (loads of fun with lack of version control) but it also makes this entire thing more frustrating every time I update a workflow (as normally this also means the scheduling of said workflow breaks).

It would be awesome if instead of having to search by title for your workflow that you wish to replace with if you could instead use the URL where Alteryx Gallery put the workflow and then there wouldn't be any confusions about which workflow and you wouldn't have to type.

The admin (aka curator) needs to be given more control. The admin should have greater control than the users of the system.

My organization is in the Healthcare industry and we have HIPAA laws to abide by when it comes to data. Not all users should be able to see all data. Developers should not have complete control over the data they publish.

Private studio

• admin should be able to control if users can publish to Alteryx gallery (compliant issues occur when our organization's data is shared to outside users)
• admin should be able to control if user can publish to public gallery (compliant issues occur when all users can all see and run workflows)
• admin should be able to delete subscriptions and users

Collections

• admin should be able to create collections so they can manage the collections and what users have access to (devs should not be able to give any user access to their workflows)
• admin should be able to control if users can create new collections (again, compliance issues)
• admin should be able to grant and remove download of workflow rights
• admin should be able to delete connections

Get tips from Tableau as they have admin controls down with their permissions process.

When installing and configuring Alteryx, the wizard allows the administrator to select the Gallery authentication to be used among:

Built-in

Integrated Windows authentication

Integrated Windows authentication with Kerberos

SAML authentication

The note states:

Once an authentication type has been selected, it should not be changed. Changing it may cause technical problems.

The gallery manual states "Once an authentication type has been selected it should not be changed or Gallery functionality may be compromised." 

https://help.alteryx.com/server/current/admin/Configuration/SystemSettings/Gallery.htm?Highlight=%22...

If you are reading this idea suggestion, I hope it is not too late for you. Why allow the user to change the authentication method once the install is completed? What are the options to solve this?

One option would be to grey-out the "Authentication Type" section in the  "Gallery Authentication" screen, so the user is not able to change authentication methods once after the first configuration is set. This would still allow the user to change SAML settings.

Another option, if somehow there is a reason why a user would want to change authentication types even though it is not supported, what about changing the layout to make it more difficult to change the authentication type.

What are your other suggested changes?

This is not relevant if this idea is implemented https://community.alteryx.com/t5/Alteryx-Server-Ideas/Allow-changing-of-Gallery-Authentication-witho...

However, I would imagine that a UI change would be a lot easier to implement that supporting overhauling the user management in the MongoDB.

We have configured the service account for Alteryx services on workers, controllers and Gallery. Kindly go through the below problem statement and current scenario and help to provide solution.

I will appreciate if we can setup a 30 minutes call and discuss on it.

Purpose/Current Design :

1. Our purpose was to on board the account in EPV-AIM/gMSA solution so that password won’t be hard-coded anywhere in the config for service LAN account.
2. Use same LAN service account to run the workflow on workers and write the output at destination paths [ Shared paths, Mailboxes]
3.  

Problem Statement  :

As we have added service LAN account  in multiple AD groups [ global and local ] it has become member of 440+ groups which has resulted in the approx.. token size to 8421.

Active directory has a limit of having approx.. token size to 10000 (10k) for LAN accounts and after that it will fail to authenticate with AD ; which will result in failure of starting Alteryx services.

Please refer below link to know what exactly issue we are facing and looking solution from Product team[Alteryx].

https://www.jijitechnologies.com/blogs/active-directory-token-bloat

We are looking from the Alteryx team :

1. Find a solution and provide some enhancement where we can use multiple (more than one) LAN accounts to run the workflows.
2. In Large scale when we are running workflows of different team’s it is obvious that LAN ID will be member of multiple AD groups and it will reach to Token bloat threshold.
3. We are looking something which can be provided as solution within the same setup to add multiple accounts or any other solution .

We already explored the option you suggested [https://help.alteryx.com/current/server/credentials] but as per our firm’s password policy we cannot save/use/withdraw privilege account passwords.

Because if we go with the suggested option we have to add the particular accounts in Windows server privilege group [ Log on as service, App_Security Logon locally and run batch job].

To meet compliant policy ; Any account which is privilege should be considered as app to app account and it should be integrated with Microsoft’s gMSA or CyberArk’s EPV-AIM solution to be on boarded account in vault. [ No human interaction with account ]

Feel free to reach out to me for any additional clarifications.

Hello,

Current Data Connections options are limited to db connections: MSSQL, Oracle and Others.

In my opinion, it should be expanded by at least:

- FTP/SFTP addresses

- URLs to webservices or resources

- Cloud resources like AWS S3

The server should manage resources as much as possible

Best,

Piotr

I would like to have the ability to configure my company's Gallery to display more than five applications/workflows to a page.  This is a waste of screen space and creates unnecessary clicks for browsing.

Gallery Devs - 

When I click 'Add Tags' to an application in Gallery, the tag listing comes up chronologically by time time created, as opposed to alphabetically.  It looks ridiculous to see this:

Underwear

Shoes

Dresses

Bandannas

Socks

Jewelry

This is the easiest fix ever. 

As part of the Persistence Expiration processes, within Designer we have the ability to set a retention threshold of the results tab.   i.e. 30 days.

After enabling this - all completed results are purged  but all the "error" results remain.  And this depending on the original count can run into the thousands, such as in my environment.   Id like to see the "Error" results become part of the clean up processing because of the following reasons:

1.  We do not have dedicated admins that have time to manually or by group delete these error result items.

2.  Most if not all - errors are resolved immediately.   if there were to be kept as a reference, a screen shot of the results are normally taken and filed away.

Support says this is intentional for resolution tracking purposes - but to counter - as I stated in item 2 - most errors are immediately looked at and worked on. So there is no reason to keep errored results. Especially when they are time-stamped dates greater than the expiration values selected.