Protect groups

You must create at least one Protect group before creating a data protection standard or a data access rule. Each Protect group is associated with a role in the data source provider.

Note In BigQuery, roles are referred to as principals.

The Groups tab in Protect contains an overview of the Protect groups that are created for standards and rules. The table on the Groups tab contains the Protect groups that are active in the data source.

This topic describes how to create a Protect group and what is shown on the Groups tab in Protect.

Create a Protect group

Before you begin

You have a global role that has the Protect > Edit or Protect > Administration global permission.

Steps

  1. Open Protect.
  2. On the Groups tab, click Collibra Protect Groups API.
  3. For the next steps, go to Add a new group.
  • When creating a Protect group, you are prompted to specify the data source provider (AWSLakeFormation, Databricks, GoogleBigQuery, or Snowflake) and the existing role from the provider to map the role to the group.

    Add a new group page

  • The following image shows the roles in Snowflake.

  • The following images show a CSV file (named protect_groups.csv) that contains Protect groups to be added to Collibra, and a bash script that adds those Protect groups to Collibra for Snowflake.

    Protect groups CSV file

    Bash script to add Protect groups from a CSV file

Groups tab

The following table describes the columns that are shown in the table on the Groups tab.

Column Description
Group Name The name of the group.
System Reference References to identify the data source provider and the native identifier associated with the group.

Created By

 The name of the user who created the group.
Created Date The date when the group was created.
Note 
  • Multiple Protect groups can be mapped to the same data source identity.
  • Within a single Protect group, only one mapping per data source is supported.