Using the taxonomies available in your organization, resources can be automatically or manually categorized. You may need to examine the results of the automated system, or the way resources are being manually categorized by your users in order to evaluate the success of the system, and to help identify areas of improvement. For example, you may notice that a particular category is applied less often than you expect by the automated system. This may indicate that the rules attached to the categories in that taxonomy need some tweaking. You must be a Classification Analyst or Compliance Officer to use this view.

You may wish to view the categorization details of a resource to better understand the content. You may also wish to edit the categorization; for example, allowing the automated system to take over categorization if it has been overridden. Remember that business owners can manage the categorizations of their owned resources, and you should communicate with them as necessary to prevent your changes from being undone, or to gain further insight into a particular resource if required. If a manually categorized resource is owned, you can use the categorization details to understand how the automated system would categorize the resource. You may find it helpful to see how the system would work without disturbing the business owner’s categorization decisions.

The Categorized Resources view shows all scanned resources that have at least one category. You can only view and edit categories for governed resources. Resources can be placed under governance using the Manager by your Data Governance administrator. For more information, see Placing a Resource Under Governance of your Data Governance Edition User Guide.

Resources that are encrypted or password protected cannot be categorized. You can identify these resources in the View Provider log. A message will indicate that the file could not be filtered. For more information on retrieving logs, see Gather Diagnostic Information on the Classification Server and Workers.

Only SharePoint documents in libraries will be automatically categorized. Also, the contents of a list are shown as “list item”, regardless of the type of item in SharePoint.

The Categorized Resources view allows you to start by choosing a category, and then filter down your results to get the information you need. You can use the following filters:

To view and filter categorized resources in your environment

1. Click Governed Data | View Resources | Categorized Resources.
2. If necessary, expand the Select Your Filters section.
3. Click Select category and in the Select Category dialog box, choose a taxonomy and category, then click Select category.
4. Enable Include resources categorized with subcategories of this category if desired.
5. Select any other filters.
6. Click Search.
   You can work with the filters interactively. Add and remove filters, and click Search to apply your changes.

To view or edit a resource’s categorization from the Categorized Resources view

1. Locate a resource of interest in the view.
2. Click the link on the resource name.
   If the resource is not governed, you cannot edit its categorization.
3. Click the Categorization tab.
4. View the categorization of the resource across all taxonomies, including whether any taxonomies are currently ignored.
5. If you need to modify the categorization, follow the instructions in Working With Manually Categorized Resources or Working With Automatically Categorized Resources.

Before you put a category into production, you should ensure that it is properly configured and has the expected results. See Testing and Reviewing Automated Classification and Taxonomy Deployment Considerations for more details. Once you make it available for automated classification, any scans that start after this time will include the category. For any content that is being watched with changes, categorizations are possible after the next change.

Categories must be both published and automated in order for automated categorization to occur.

To make a category available for automation

1. Select Governed Data | Categorization Manager | Taxonomies.
2. Edit the category and ensure it is published.
3. Select Allow this category to be used by the automated system.

To make a category available for automation using PowerShell

1. Run the Set-QCategory command with the following parameters:
   1. ServerAddress
      Provide the name of the computer hosting the Data Governance server, and the port. Enter in the form computername:port number. The default port is 8723.
   2. CategoryID
      For information on locating a category ID, see Finding a Taxonomy, Category, or Extractor ID using PowerShell.
   3. Set IsPublished to $true.
   4. Set IsAutomaticClassificationEnabled to $true.

Contents

• Working with Classification Taxonomies
• Viewing Classified Resources

Once documents are categorized, the system can classify them. Categorization is based on the content of a resource, while classification is based on the risk the resource poses. By classifying your unstructured data, you can begin to understand the security risks posed, and put policies in place to control these resources.

In Identity Manager, each category is assigned a risk. A classification taxonomy maps those risks to the classifications in your system. The default classification taxonomy has the following risk settings:

If a category risk falls on the border between classifications, the resource is classified at the higher level - for example Internal, not Public. You cannot delete or rename these classifications.

If you have implemented the Titus Commercial taxonomy, the categories in the taxonomy are automatically mapped to these classifications. For more information, see Titus Commercial Taxonomy. Categories in other taxonomies must be assigned a category risk in order for classification to occur.

Classification and resource risk index considers the risk on inherited categories when performing calculations. Consider a taxonomy with the following categories: Taxonomy A Category 1 has a risk of .9 Category 2 has a risk of 0 If you apply Category 2 to a resource, the Classification risk on the resource will be Secret and the resource risk will take the .9 into effect when it is calculated. This happens because Category 1 is indirectly applied to the resource.

You can manipulate the relationship between category risk and classification, or create your own classifications. Each classification has the following properties:

To modify an existing classification

1. Select Governed Data | Classification Manager.
2. Click the classification you want to modify.
3. Click Master Data.
4. Make any changes, and click Save Changes.

To create a new classification

1. Select Governed Data | Classification Manager.
2. Click New Classification.
3. Provide a name, classification risk index, and if desired, a taxonomy.
4. Click Save.
   Your classification is saved, but will not result in classifications until you create an associated classification rule.
5. Click Master Data.
6. Click New classification rule.
7. Set the range for the category risk that will cause this classification to occur.
8. Click Save.

To delete a classification

1. Select Governed Data | Classification Manager.
2. Select the desired classification and click Master Data.
3. Click Delete.