Regarding Permissions to SSIS Catalog, here are the findings. We can give access in three ways
1. READ Access – We can provide a user db_datareader access. With this the user can see the objects within the SSIS catalog database, but cannot see the reports.
2. SSIS_ADMIN – Add the user to this database role in SSISDB. With this the user can view the reports. But it also provides them privileges to modify catalog information which is not expected. We can add it using below script
EXEC sp_addrolemember 'ssis_admin' , 'REDMOND\PAIntelAnalyst'
3. SYSADMIN - Add the user to this server role. This will make the user an admin on the SQL server. This is not intended.
Is there any method available which will have provision to give read only access to see SSIS Catalog package execution reports and not having modify Catalog access.