立即与支持人员聊天
与支持团队交流

Identity Manager Data Governance Edition 9.1 - User Guide

One Identity Manager Data Governance Edition User Guide Data Governance node and views Administering Data Governance Edition Managing unstructured data access
Managing resource access Managing account access Working with security permissions Working with SharePoint security permissions Account access modeling Bringing data under governance
Classifying governed resources Managing governed resources using the web portal Data Governance Edition reports Troubleshooting EMC, NetApp Filer, and SharePoint configuration details PowerShell commands Governed data attestation policies Governed data company policies Governed data risk index functions

Governed resources are missing from the All my resources view in the web portal

Probable cause

Business ownership for governed resources was set programmatically or through the Object Browser.

Resolution

If business ownership for governed resources is set programmatically or through the Object Browser, you must also set the following parameter for these governed resources:

QAMDuG.IsPointOfInterest = true.

NOTE: Business ownership is indicated by setting values for either QAMDuG.UID_PersonResponsible or QAMDuG.UID_AERoleOwner.

EMC, NetApp Filer, and SharePoint configuration details

Additional configuration for an EMC storage device

Additional configuration for NetApp filers

Configure SharePoint to track resource activity

Additional configuration for an EMC storage device

EMC storage devices are added to the Data Governance Edition deployment as managed hosts with remote agents. Due to the EMC architecture, you must complete the following procedures when you add an EMC storage device as a managed host.

Note: EMC supports only one auditing pool at a time, meaning only one vendor or vendor's product can subscribe to CEPA auditing events for a given computer. Therefore, if Quest Change Auditor for EMC is configured to collect activity from an EMC storage device via the Quest Shared EMC Connector, and you would like activity collection/aggregation in Data Governance Edition, you must configure Data Governance Edition to collect activity directly from Change Auditor. For more information, see the Post installation configuration chapter in the One Identity Manager Data Governance Edition Deployment Guide.

The activity collected can then be used to generate resource activity reports and calculate the perceived owner. However, in this scenario, it is recommended that you clear the Collect activity for real-time security updates option for all EMC managed hosts. The agents managing these host types should be configured to scan on a schedule and not run once. The performance gain in using Change Auditor's event collection will be lost if the Data Governance agent is also collecting activity from these storage devices for security updates.

Configuring CEE framework

Data Governance Edition 7.0.2 (and higher) requires the EMC Common Event Enabler (CEE) 7.1 (or higher) framework to collect resource activity from an EMC storage device. The Data Governance agent will register with EMC CEE as a VCAPS endpoint. EMC CEE must be installed on the same server as the Data Governance agent. If you are collecting resource activity from the EMC storage device, you can only specify one agent to manage the EMC host.

To configure CEE framework

  • Install the EMC CEE framework on one or more Windows servers.

Note: EMC CEE must be installed on the same server as the Data Governance agent.

Next steps:

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级