Data source policies (beta)

Data source policies are the policies that are native to a data source, for example, AWS Lake Formation data filters, BigQuery policy tags, and Snowflake masking policies. Data protection standards and data access rules created in Protect result in policies in the data sources. Protect enforces its standards and rules by creating and applying the data source policies on the physical data layer (tables and columns).

Import data source policies

Prerequisites

You have the Protect Author or Protect Admin global role.
The Manage all resources global permission is assigned to the Edge site global role.

Steps

You can import policies from your data source to Protect by using the Collibra Protect Data Source Policies API. The following is a template of a cURL command that you can use.

curl --location --request POST 'https://<collibra-environment-url>/rest/protect/v1/policies/import' --header 'Authorization: Basic <user:password encoded in base64>' --header 'Content-Type: application/json' -d '{"databaseId": "<database-asset-ID>"}' -v

Note

In the template:

Replace the placeholders indicated by "<>" with the actual values for your Collibra environment.
database-asset-ID refers to the ID of the database asset in Collibra that maps to the database in your data source.

Data Source Policies tab

The Data Source Policies tab contains an overview of the native data source policies. The table on the tab contains the policies that are active in the data source. These include both the policies that already exist in your data source and the policies that are automatically created by Protect in your data source.

The following table describes the columns that are shown on the Data Source Policies tab.

Column	Description
Policy Name	Name of the policy in the data source.
Policy Logic	Logic that the data source uses to enforce the policy. For example, Snowflake runs an SQL script when you try to access protected data.
Tags	Names of the tags associated with the policy.
Data Source	Data source provider.