Redacted Parameters

I am a SQL Monitor Admin and an SysAdmin on all the SQL Servers it monitors.  Why does it say redacted when I try to view the parameters of the execution plan?  Is this a setting somewhere?

Answers

  • lmacdonaldlmacdonald Posts: 6 New member
    If I copy the "SELECT query_plan FROM sys.dm_exec_query_plan" statement and run that in management studio I can see the parameters.
  • Jon_KirkwoodJon_Kirkwood Brisbane, Australia Posts: 43 Bronze 1

    Hi @lmacdonald

    Thanks for reaching out on the Redgate forums regarding your SQL Monitor query.


    Certainly, there are some details which you can check regarding redacted details of execution plans.


    In UserPermissionsMapper.cs there is a line - "Permissions.QueryPlans.CanViewParameters" for admin permissions. If you have an admin role in SQL Monitor then they should be able to see them.


    Depending on what authentication type (BASIC, AD, OIDC) you are using there is another check you can do.

    • If AD or OIDC check SELECT * FROM settings.AuthPrincipals AS ap​ for their user and see if PrincipalRole is 1 (admin) - or just get the result for the user for all columns and we can have a look
    • If BASIC auth, then see if they are logging in with the admin user.

    Hope this helps track down the settings to alter the behaviour in your Monitor deployment


    Jon Kirkwood | Technical Support Engineer | Redgate Software
  • lmacdonaldlmacdonald Posts: 6 New member
    We are logging in using our AD account or Windows Authentication.  I was not able to find the UserPermissionsMapper.cs file.  Where is that file located, I searched the entire server that SQL Monitor is installed on.

    My account is not called out specifically but I am in the dbas group that does have a PrincipalRole of 1.  However I might be in other groups that have lesser permissions, but I would think the most privileged account would trump all that right?
Sign In or Register to comment.