Skip to content

Enable Sensitive Data Discovery (SDD) and Run on Data Sources

Requirement:

  • Immuta permission GOVERNANCE

This how-to guide is for enabling sensitive data discovery (SDD). For additional information on sensitive data discovery and classification, see the Discover architecture page.

  1. Navigate to the App Settings page and scroll to the Sensitive Data Discovery section.
  2. Select the Enable Sensitive Data Discovery (SDD) checkbox to enable SDD.
  3. Click Save and then click Confirm to apply your changes. Note that the Immuta tenant will have a system restart.

  4. Run SDD for a select group of data sources; use one of the following options to run SDD on specific data sources:

    1. Run SDD on a data source in the UI.
    2. Run SDD using a specific framework in the UI.

    3. Make the following request specifying the data sources in the request using the Immuta API.

      curl \
    --request 'POST' \
    'https://your-immuta-url.immuta.com/sdd/run' \
    --header 'Content-Type: application/json' \
    --header 'Authorization: 438a3096966c4a5188b3b468cedb213e' \
    --data '{"sources":["Example Data Source Name", "Example Data Source 2 Name"]}'

      A successful request will have the code 200 and a body with the number of jobs created from the request:

      {
    "jobCount": 2
}

  5. Navigate to the data source overview page of the data source you listed in the payload.

  6. Click the Data Dictionary tab.
  7. Assess whether the Discovered and classification tags applied are accurate.
  8. If they are, then repeat the steps above for more of your data sources. Once a majority of your data sources appear to have accurate tags, run SDD on all your data sources. If the tags are not accurate, you will need to tune SDD and classification frameworks. See the Adjust frameworks and tags guide for instructions.

Run SDD on all data sources

  1. Click the Discover icon and the Identification tab in the navigation menu.
  2. Select the more actions icon.
  3. Select Run SDD and then select it again in the modal.

Run SDD on all data sources using the API

Requirement:

  • Immuta permission GOVERNANCE

Make the following request using the Immuta API to run SDD for all data sources, specifying all as true:

curl \
    --request 'POST' \
    'https://your-immuta-url.immuta.com/sdd/run' \
    --header 'Content-Type: application/json' \
    --header 'Authorization: 438a3096966c4a5188b3b468cedb213e' \
    --data '{"all": true}'

A successful request will have the code 200 and a body with the number of jobs created from the request:

{
    "jobCount": 12
}