Important Update: Cohesity Products Documentation

All Cohesity product documentation are now managed via the Cohesity Docs Portal: https://docs.cohesity.com/HomePage/Content/home.htm. Some documentation available here may not reflect the latest information or may no longer be accessible.

Arctera Insight Information Governance User's Guide

Last Published:
Product(s): Data Insight (7.2.2)
Platform: Windows
  1. Section I. Introduction
    1. Introducing Arctera Insight Information Governance
      1.  
        About Arctera Insight Information Governance
      2.  
        About data custodian
      3.  
        About permissions
      4.  
        About SharePoint permissions
      5.  
        About Box permissions
      6.  
        About audit logs
      7.  
        About migrated domains
      8.  
        Applications for Data Loss Prevention
      9.  
        Content classification using Arctera Information Classifier
    2. Using the Arctera Insight Information Governance Management Console
      1. About the Arctera Insight Information Governance Management Console
        1.  
          Header
        2.  
          Tabs
        3.  
          Navigation pane
        4.  
          Content pane
      2.  
        Operation icons on the Management Console
      3.  
        Logging in to the Information Governance Management Console
      4.  
        Logging out of the Information Governance Management Console
      5.  
        Accessing online Help
  2. Information Governance Dashboard
    1.  
      About the Information Governance Dashboard
  3. Information Governance Workspace
    1.  
      About Information Governance Workspace
    2.  
      Data
    3.  
      DFS
    4.  
      Users
    5.  
      Groups
  4. Section II. Information Governance reports
    1. Using Information Governance reports
      1.  
        About Information Governance reports
      2.  
        How Information Governance reporting works
      3.  
        Creating a report
      4. About Information Governance security reports
        1. Activity Details report
          1.  
            Create or Edit Activity Details for Paths report
          2.  
            Create or edit Activity Details for Users and Groups report
        2. Permissions reports
          1. Inactive Users
            1.  
              Create or edit Inactive Users report
          2. Path Permissions
            1.  
              Create or edit Path Permissions report
          3. Permissions Search report
            1.  
              Create Permissions Search report
          4.  
            About Permissions Query templates
          5. Creating a Permissions Query Template
            1.  
              Using the match-type criteria
          6.  
            Creating custom rules
          7. Permissions Query Template actions
            1.  
              Editing or deleting a Permissions Query Template
            2.  
              Copying a Permissions Query Template
            3.  
              About sharing a Permissions Query Template
          8.  
            Using Permissions Search report output to remediate permissions
          9. Entitlement Review
            1.  
              Create or edit Entitlement Review report
          10. User/Group Permissions
            1.  
              Create or edit User/Group Permissions
          11. Group Change Impact Analysis
            1.  
              Create or edit Group Change Impact Analysis report
        3. Ownership Reports
          1. Data Custodian Summary
            1.  
              Create or edit Data Custodian Summary report
          2. Inferred Owner
            1.  
              Create or edit Inferred Owner report
          3. Data Inventory Report
            1.  
              Create or edit Data Inventory report
      5.  
        Create/Edit security report options
      6. About Information Governance storage reports
        1. Activity Summary reports
          1.  
            Create or edit Activity Summary for Paths report
          2.  
            Create or edit Activity Summary for User/Groups report
        2. Capacity reports
          1. Filer Utilization
            1.  
              Create or edit Filer Utilization report
          2. Filer Growth Trend
            1.  
              Create or edit Filer Growth Trend report
        3. Data Lifecycle reports
          1. Inactive Data by File Group
            1.  
              Create or edit Inactive Data by File Group report
          2. Inactive Data by Owner
            1.  
              Create or edit Inactive Data by Owner report
          3. Data Aging
            1.  
              Create or edit Data Aging report
          4. Inactive Folders
            1.  
              Create or edit Inactive Folders report
        4. Consumption Reports
          1. Potential Duplicate Files
            1.  
              Create/Edit Potential Duplicate Files report
          2. Consumption by Folders
            1.  
              Create or edit Consumption by Folders report
          3. Consumption by Department
            1.  
              Create or edit Consumption by Department
          4. Consumption by File Group
            1.  
              Create/Edit Consumption by File Group
          5. Consumption by Owner
            1.  
              Create/Edit Consumption by Owner
          6. Consumption by File Group and Owner
            1.  
              Create/Edit Consumption by File Group and Owner
      7.  
        Create/Edit storage report options
      8. About Information Governance custom reports
        1.  
          About DQL query templates
        2.  
          Creating custom templates for DQL queries
        3.  
          Create/Edit DQL report options
        4. Creating DQL reports with custom variables
          1.  
            Running a DQL report with custom variables
      9.  
        Considerations for importing paths using a CSV file
    2. Managing reports
      1.  
        About managing Information Governance reports
      2. Viewing reports
        1.  
          About stale information in reports
      3.  
        Filtering a report
      4.  
        Editing a report
      5.  
        About sharing reports
      6.  
        Copying a report
      7.  
        Running a report
      8.  
        Viewing the progress of a report
      9.  
        Customizing a report output
      10.  
        Configuring a report to generate a truncated output
      11.  
        Sending a report by email
      12.  
        How does number of records field work differently from the truncate output records field?
      13.  
        Automatically archiving reports
      14.  
        Canceling a report run
      15.  
        Deleting a report
      16.  
        Considerations for viewing reports
      17.  
        Organizing reports using labels
  5. Section III. Remediation
    1. Configuring remediation workflows
      1.  
        About remediation workflows
      2.  
        Prerequisites for configuring remediation workflows
      3.  
        Configuring Self-Service Portal settings
      4.  
        About workflow templates
      5. Managing workflow templates
        1.  
          Create/Edit Entitlement Review workflow template
        2.  
          Create/Edit DLP Incident Remediation workflow template
        3.  
          Create/Edit Ownership Confirmation workflow template
        4.  
          Create/Edit Records Classification workflow template
      6. Creating a workflow using a template
        1. Create Entitlement Review workflow options
          1.  
            Customizing Entitlement Review report output
        2.  
          Create DLP Incident Remediation workflow options
        3.  
          Create Ownership Confirmation workflow options
        4.  
          Create Records Classification workflow options
      7. Managing workflows
        1.  
          Viewing details of submitted workflows
        2.  
          Extending the deadline of a workflow
        3.  
          Copying a workflow
        4.  
          Managing submitted workflows
        5.  
          Canceling or deleting a workflow
      8.  
        Auditing workflow paths
      9.  
        Monitoring the progress of a workflow
      10.  
        Remediating workflow paths
    2. Using the Self-Service Portal
      1. About the Self-Service Portal
        1.  
          About Entitlement Review
      2.  
        Logging in to the Self-Service Portal
      3.  
        Using the Self-Service Portal to review user entitlements
      4.  
        Using the Self-Service Portal to manage Data Loss Prevention (DLP) incidents
      5.  
        Using the Self-Service Portal to confirm ownership of resources
      6.  
        Using the Self-Service Portal to classify sensitive data
    3. Managing data
      1. About managing data using Arctera Enterprise Vault and custom scripts
        1.  
          About Retention categories
        2.  
          About post-processing actions
      2.  
        Managing data from the Shares list view
      3.  
        Managing inactive data from the Folder Activity tab
      4.  
        Managing inactive data by using a report
      5.  
        Archiving workflow paths using Arctera Enterprise Vault
      6.  
        Using custom scripts to manage data
      7.  
        Pushing classification tags while archiving files into Arctera Enterprise Vault
      8.  
        About adding tags to devices, files, folders, and shares
    4. Managing permissions
      1.  
        About permission visibility
      2.  
        About recommending permission changes
      3. About recommending permissions changes for inactive users
        1.  
          Reviewing permission recommendations
        2.  
          Analyzing permission recommendations and applying changes
      4.  
        Making permission changes directly from Workspace
      5.  
        Removing permissions for Entitlement Review workflow paths
  6. Appendix A. Command Line Reference
    1.  
      mxcustodian
  7.  
    Index

Making permission changes directly from Workspace

You can make permission changes from the user-centric views of the Workspace tab. You can do the following:

  • Remove a user from a group of which the user is a direct member.

  • Remove a direct member group from a group.

  • Revoke the permissions of a trustee who has explicit permissions on a path. If the trustee inherits permissions on a path, then the option to revoke the trustee's permission is not available.

Note:

Information Governance allows only the user with the Server Administrator role to take permission remediation action from the Workspace tab. The options to remove users or groups or to revoke permissions is not visible to users other than the Server Administrator.

Removing a user from a group

To remove a user from a group

  1. Navigate to the Overview tab for the user.

    The Overview tab for a user displays a list of all groups of which the user is a direct member.

  2. Click the Delete icon to remove the user from a particular group. Proceed to 4.
  3. Or, on the Overview tab for a group, do the following:

    • Select the users that you want to remove from the group.

    • The Remove Members from Group pop-up, displays the direct members of the groups who can be removed. It also indicates the members that cannot be removed because they are indirect members of the group.

  4. On the pop-up, click Analyze Changes to trigger a Group Change Analysis report.

    This report helps you review the effects of the membership change on the user's access to other paths that the user may have permissions on.

  5. Once the report run is complete, review the Group Change Impact Analysis report for the Information Governance recommendations.

    The report is also available on the Reports tab.

  6. Click Submit Changes to start the process of raising a request to implement the changes.
Removing a group from another group

To remove a group from another group

  1. Navigate to the Overview tab of a group.

    The Overview tab for a group displays a list of all groups of which the selected group is a direct member and the groups to which the selected group has inherited membership. Additionally, all direct and indirect members of the selected group are also displayed.

  2. Click the Delete icon to remove the group from a particular group.

    You can also select the user members or the group members that you want to remove from the selected group. Information Governance removes only the direct member groups or direct member users of that group.

  3. On the pop-up, click Analyze Changes to trigger a Group Change Impact Analysis report.

    This report helps you review the effects of the membership change on the groups's access to other paths that the group may have permissions on.

  4. Once the report run is complete, review the Group Change Impact Analysis report for the Information Governance recommendations.

    The report is also available on the Reports tab.

  5. Click Submit Changes to start the process of raising a request to implement the changes.
Revoking a user's or group's permissions

You can revoke a user's or group's permissions on a path directly from the Permissions tab when the user or group has explicit permissions on the path.

To revoke a user's or groups permissions

  1. Navigate to the Permissions tab of a share or folder on which you want to revoke a user's or group's permissions.
  2. Click the File System Access Control List or the Share-level permissions sub-tab.
  3. The users and groups that have explicit permissions on that path are listed. Click the Delete icon under the Remove Permissions column to revoke the permission.
  4. Click Yes on the confirmation pop-up to effect the permission change.

More Information

About recommending permission changes