Labels and databases1/31/2024 The classification engine scans your database for columns containing potentially sensitive data and provides a list of recommended column classifications. To begin classifying your data, select the Classification tab on the Data Discovery & Classification page. To download a report in Excel format, select Export in the top menu of the pane. If you haven't classified any columns yet, skip to step 4. The summary includes a detailed list of all classified columns, which you can also filter to show only specific schema parts, information types, and labels. The Overview tab includes a summary of the current classification state of the database. Go to Data Discovery & Classification under the Security heading in your Azure SQL Database pane. The below example uses Azure SQL Database, but you should select the appropriate product that you want to configure Data Discovery & Classification. Classify database in SQL Information Protection policy mode The patterns are added to the discovery logic for identifying this type of data in your databases.įor more information, see Customize the SQL information protection policy in Microsoft Defender for Cloud (Preview).Īfter the organization-wide policy has been defined, you can continue classifying individual databases by using your customized policy. You can also add your own custom information types and configure them with string patterns. Only someone with administrative rights on the organization's root management group can do this task.Īs part of policy management, you can define custom labels, rank them, and associate them with a selected set of information types. That location is in Microsoft Defender for Cloud, as part of your security policy. You define and customize of your classification taxonomy in one central place for your entire Azure organization. Define and customize your classification taxonomy You can define a set and ranking of classification constructs specifically for your environment. You can continue using the protection labels available in the default policy file, or you can customize this taxonomy. Information types: Attributes that provide more granular information about the type of data stored in the column.Īzure SQL offers both SQL Information Protection policy and Microsoft Information Protection policy in data classification, and you can choose either of these two policies based on your requirement.ĭata Discovery & Classification comes with a built-in set of sensitivity labels and information types with discovery logic which is native to the SQL logical server.Labels: The main classification attributes, used to define the sensitivity level of the data stored in the column.The classification includes two metadata attributes: Viewing the current classification state of your database and exporting reports. ![]() Discovering, classifying, and labeling columns that contain sensitive data in your database.Also, you can download a report in Excel format to use for compliance and auditing purposes and other needs.ĭiscover, classify, and label sensitive columns Visibility: You can view the database-classification state in a detailed dashboard in the Azure portal. Query result-set sensitivity: The sensitivity of a query result set is calculated in real time for auditing purposes. This metadata can then be used for sensitivity-based auditing scenarios. Labeling: You can apply sensitivity-classification labels persistently to columns by using new metadata attributes that have been added to the SQL Server database engine. It then provides you with an easy way to review and apply recommended classification via the Azure portal. What is Data Discovery & Classification?ĭata Discovery & Classification currently supports the following capabilities:ĭiscovery and recommendations: The classification engine scans your database and identifies columns that contain potentially sensitive data. For information about SQL Server on-premises, see SQL Data Discovery & Classification.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |