Enabling Legacy Query Engine and Fingerprint
The query engine and fingerprint services are no longer installed by default. This guide demonstrates how to enable the query engine and fingerprint services using the Immuta Enterprise Helm chart (IEHC).
If you are using any of the data platforms below, you must enable the query engine:
Amazon Redshift
Azure Synapse Analytics
Google BigQuery
If you are using the legacy sensitive data discovery (SDD) feature, you must enable the query engine and fingerprint services.
Kubernetes namespace
The following section(s) presume the IEHC was deployed into namespace immuta, and that the current namespace is immuta.
Prerequisites
When migrating from the IHC to IEHC, query engine state is not retained. You must enable query engine rehydration to restore existing data source tables. If SQL credentials are used, they must be recreated by using LDAP sync or manually with the following command executed in the bometadata database:
TRUNCATE bometadata."profile-sql";
The Immuta in production guide must be completed before proceeding.
Validate that secret
immuta-secretexists in the current namespace.kubectl get secret/immuta-secret
Create Kubernetes secret
Create a file named
secret-data.envwith the following content.Create secret named
immuta-legacy-secretfrom filesecret-data.envDelete file
secret-data.env, as it's no longer needed.
Edit Helm values
Edit the
immuta-values.yamlfile to include the following Helm values.Update all placeholder values in the
immuta-values.yamlfile.
Avoid these special characters in generated passwords
whitespace, $, &, :, \, /, '
Apply Helm values
Perform a Helm upgrade to apply the changes made to immuta-values.yaml.
Last updated
Was this helpful?