Veritas Data Insight User's Guide
- Section I. Introduction
- Introducing Veritas Data Insight
- Using the Veritas Data Insight Management Console
- Section II. Data Insight Workspace
- Navigating the Workspace tab
- Analyzing data using the Workspace views
- Viewing access information for files and folders
- Viewing user activity on files or folders
- About visualizing collaboration on a share
- Viewing access information for users and user groups
- Section III. Data Insight reports
- Using Data Insight reports
- About Data Insight security reports
- Permissions reports
- Permissions Search report
- Creating a Permissions Query Template
- Permissions Query Template actions
- Ownership Reports
- About Data Insight storage reports
- Capacity reports
- Data Lifecycle reports
- Consumption Reports
- About Data Insight custom reports
- Managing reports
- Viewing reports
- Using Data Insight reports
- Section IV. Remediation
- Configuring remediation workflows
- Managing workflow templates
- Creating a workflow using a template
- Managing workflows
- Using the Self-Service Portal
- About the Self-Service Portal
- Managing data
- About managing data using Enterprise Vault and custom scripts
- About adding tags to files, folders, and shares
- Managing permissions
- About recommending permissions changes for inactive users
- Configuring remediation workflows
- Appendix A. Command Line Reference
Monitoring the progress of a workflow
On the Workflows listing page, you can view the progress of workflows that are submitted to the Self-Service Portal. You can also view the details of the actions that are taken on all paths that are part of a workflow.
All workflow-specific jobs must run before you can see the response that the custodian submits from the Veritas Self-Service Portal on the Data Insight Console.
To view the status of a workflow
- On the console, click the Workflows tab and then the Workflows sub-tab.
On the Workflows list page, you can view the status for each workflow. The following table describes the possible status for any workflow:
When the workflow is saved as a draft but is not submitted to the portal server.
When the workflow is submitted from the Management Server but is not picked up by the Portal server for processing.
When workflow is being processed by the portal server for processing .
A workflow is marked as complete if:
The end date of the workflow lapses and after a day of grace period from the end date.
An action is taken on all the paths by all the custodians and the portal server has processed the workflow
If you have canceled the workflow.
After the due date of the workflow, an extra day is given as grace period. In this case, the state of the workflow is set to Grace Period. If actions are still not taken by the end of the grace period, the status changes to Completed, and the state of the paths will be shown as Expired.
If Data Insight fails to create a workflow database based on the input that is provided for the workflow.
- On the workflow listing page, click Select Action > View, or click the workflow link to view details of a submitted, completed, or canceled workflow.
- On the workflow summary page, you can view the list of paths that are submitted for custodians' actions on the Self-Service Portal. The page also displays the summary of the total paths in the workflow, the percentage of paths on which an action is submitted on the portal, and the time within which the workflow must be completed.
Select a path to review the details of the workflow.
Depending on the type of the workflow, you can also view the following details:
In case of an Entitlement Review workflow, the users whose permissions were reviewed, the current permissions assigned to the user on that path, the activity status of the user, the direct groups from which permissions are inherited by the user, the custodian's recommendation - whether to allow access to the user or not, and whether the user is a creator owner on the path.
In case of a DLP Incident Remediation workflow, the Data Loss Prevention (DLP) policies that the paths violate, the severity of the incidents, and the incident IDs that need to be remediated. The incident ID is associated with the available response rules for a given incident.
In case of a Records Classification workflow, the policies that the files violate, the name of the action , the retention category being applied to the file, and the response from the Enterprise Vault™ server.
The custodian(s) for whose action the workflow is submitted.
The status for each path can be one of the following:
Indicates that the custodian has not taken any action on the assigned paths.
In case of a Records Classification workflow, this status indicates that a file is marked as record by the custodian, and the archive request is being processed by Enterprise Vault™.
Indicates that the custodian has submitted an action and the action has been registered with the Data Insight Management Server.
In case of a DLP Incident Remediation workflow, it means that Data Insight has sent the response rule request for execution to the DLP Response Rule Execution Service.
In case of a Records Classification workflow, if a file is marked as record by the custodian, and if automatic action is configured, Data Insight submits the response for action to Enterprise Vault. Once Enterprise Vault archives the file and applies the post-processing actions on the file, Data Insight displays the response from Enterprise Vault on the Management Console. In this case, Success indicates that the archive request is completed by Enterprise Vault™.
Whereas, if a file is marked as No record, or if automatic action is not enabled, Success indicates that the custodian has submitted the response from the Portal. In this case, Data Insight simply logs the response submitted by the custodian on the Self-Service portal.
Indicates that the action submitted by the portal user on the Self-Service Portal is not registered with the Data Insight Management Server for any reason.
- Indicates that the due date for completing the workflow has expired, and the portal users will not be able to take any action on the paths in that particular workflow,
Depending on the type of workflow, you can also view the following information about the paths assigned for remediation:
Click the path to see the details of the user permissions on that path. For each user with permissions on the path, you can view the following information:
The user name
The login ID of the user
The type of permission the user has on the path. For example, read, write etc.
Activity status of the user, whether Active or Inactive.
Whether the user is allowed access on the path or not.
Whether the user is the creator/owner of the folder on the file system.
The creator owner on a path by default has Full permissions on the path.
DLP Incident Remediation
The actions are based on configured DLP Smart Response rules, for example, Quarantine, Mark for Deletion, or Archive.
For information about Smart Response rules, see the Symantec Data Loss Prevention Administration Guide.
A possible action can also be Delegate if the custodian delegates the incident remediation for certain paths to another user.
The possible actions for any path can be Confirm or Decline ownership.
The possible actions for any file can be Archive or Do not archive