Data Classification Rules
The following provides information on how to create a content-based and composite type rule.
Content-Based Rules
A content-based classification rule specifies file attributes as well as data patterns within the files that fit a particular type of data. For example, credit card numbers, driver's license numbers, or text files created last month by user X@domain.com. Each such rule is associated with a category.
In the process of creating a content-based classification rule, Data Access Security performs an AND operation between each expression. However, some operators act as an internal OR (for example, the IN operator).
To create a content-based rule, perform the following steps:
- Navigate to Compliance > Data Classification > Rules.
-
Select + New Rule > Content-Based Rule.
A new content-based rule window displays.
The available Content-Based Rule fields include:
- Rule Name (mandatory field) - Rule names are unique. It is best to create a naming convention that avoids using the same name twice.
- Categories - Enter one or more categories for the rule.
To add a new category to the Categories list, select Manage Categories and add a new item.
-
Navigate to Compliance > Data Classification > Rules > New Rule.
-
In the Rule Criteria section, add the general details to the content-based classification rule.
Users can search for existing rules using filters.
Users can perform the following actions on rules:
- Edit (only user-defined rules)
- Duplicate
- Delete (only user-defined rules)
-
Create an expression and select Save.
Note
Users can edit or delete existing rule criteria.
-
Add additional rule requirements as needed.
- Select Save to save the new content-based rule.
The system adds the rules to the Rules list.
Composite Rules
A composite classification rule lets you combine several rules together to form a more complex criterion. This can include content type rules, and is defined by category.
- The data classification matches content patterns to rules and assign categories to resources according to these rules.
- After running data classification, composite rules use a combination of categories to define complex combinations of simple rules.
Examples:
You can create a rule to list files that have at least two out of one list of categories and must contain another specific category.
or
Identify all resources that would be defined by rules that belong to category X.
To define a composite classification rule, select one or more categories and the created rule will be triggered for any existing rules within the selected categories.
The value column allows selecting one or more categories from the category repository.
Triggering Composite Rules
Composite rule tasks are triggered after each data classification task and evaluate results from that application only. The Composite rule runs after of all content rules as it is based on their results.
This task cannot be scheduled.
If you change a composite rule, this change will take effect only when a new classification task is executed and triggers the composite rule.
Creating Composite Rules
- Navigate to Compliance > Data Classification > Rules.
-
Select + New Rule > Composite Classification Rule.
The available Composite Classification Rule fields include:
- Rule Name (mandatory field) - Rule names are unique. It is best to create a naming convention that avoids using the same name twice.
-
Categories - Enter one or more categories for the rule.
To add a new category to the Categories list, select Manage Categories and add a new item.
-
In the Rule Criteria section, add the desired combination of categories to trigger the rule.
Operator - Enter the number of concurrence of categories in the business resource tested for this criterion.
For example, if you went the rule to collect Business Resources that fit both criteria C1 and C2, set the Operator to Contain at least 2 of Value: C1, C2.
Value - Enter one or more categories from the search box.
-
Select Save.
- Select + Add to add another criterion. All criteria will be combined with an AND operator.
- Select Save to save the new composite rule.
- The system adds the rules to the Rules list.
Documentation Feedback
Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.