# Integration Architecture

Immuta is not just a location to define your policy logic; Immuta also enforces that logic in your data platform. How that occurs varies based on each data platform, but the overall architecture remains consistent and follows the [NIST Zero Trust framework](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-207.pdf). The below diagram describes the recommended architecture from NIST:

<figure><img src="https://969552016-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FLnuUzWSfU9nJeB2EJkrh%2Fuploads%2Fgit-blob-5a4fdc47210e35d6d7340bf6bd1721437d7161f5%2Fzero-trust.png?alt=media" alt=""><figcaption></figcaption></figure>

Immuta lives in the middle control plane. To do this, Immuta knows details about the subjects and enterprise resources, acts as the policy decision point through policies administered by policy administrators, and makes real-time policy decisions using the internal Immuta policy engine.

Lastly, and of importance to how Immuta Secure functions, Immuta also enables the policy enforcement point by administering the policies natively in your data platform in a way that can react to policy changes and live queries.

## Configuring the integration

To use Immuta, you must configure the Immuta integration, which will require some level of privileged access to administer policies in your data platform, depending on your data platform and how the Immuta integration works. Refer to [Snowflake roles best practices](https://documentation.immuta.com/2024.3/detect-your-activity/getting-started/overview/roles-best-practices) for Snowflake before configuring the integration.

* [Snowflake](https://documentation.immuta.com/2024.3/integrations/snowflake/how-to-guides/enterprise)
* [Databricks Unity Catalog](https://documentation.immuta.com/2024.3/integrations/databricks-unity-catalog/how-to-guides/configure)
* [Databricks Spark](https://documentation.immuta.com/2024.3/integrations/databricks-spark/how-to-guides/configuration/simplified)
* [Redshift](https://documentation.immuta.com/2024.3/integrations/redshift/how-to-guides/redshift)
* [Redshift Spectrum](https://documentation.immuta.com/2024.3/integrations/redshift/how-to-guides/redshift-spectrum)
* [Starburst (Trino)](https://documentation.immuta.com/2024.3/integrations/starburst-trino/how-to-guides/configure)
* [Azure Synapse Analytics](https://documentation.immuta.com/2024.3/integrations/azure-synapse-analytics/configure-azure-synapse-analytics-integration)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://documentation.immuta.com/2024.3/detect-your-activity/getting-started/overview/native-integration.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.