Versions Compared

Old Version 4

changes.mady.by.user Andrea Harvey

Saved on

compared with

New Version Current

changes.mady.by.user Andrea Harvey

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

If you select the Remove Permissions action for a policy, you need to complete additional configuration when you add data sources that support permissions. In order for DryvIQ to remove permissions, you must specify from whom and which permissions should be removed.

  1. Open the policy that contains the data source you need to configure.

  2. Click the View link in the configuration notification (or navigate to the Data sources page within the policy).

...

  1. Click Configure next to the data source you need to configure.

  2. The configure actions modal appears. It displays all tracking groups that contain actions that require configuration.

...

  1. Click Edit for the tracking group action you want to configure.

...

  1. Image Added

  2. Additional fields display for the tracking group action.

  3. The Remove permissions from field defaults to Group. Use the list to select User if you want to remove the permissions from a specific user instead.

  4. Based on your selection, the window below will display all the groups or users on the data source. Select the group or user. (Use the Search option to search for a specific group or user.)

...


  1. Image Added

    For external users, type an email address in the field. You also have the option of using an “allusers@domain” wildcard to find all users with an email address with the specified domain.

    Image Added

  2. Click Done to finish selecting the group or user.

  3. Use the Add user or group button to add additional groups, users, or email addresses as needed.

    Image Added

  4. Use the Permissions to remove list to select if you want to remove All Permissions or All Write permissions.

    Image Added

  5. Click Apply changes.

  6. Click Done on the Configure actions modal.

NFS Data Sources

For Network File System (NFS) data sources, you will have a text box where you will need to type the name of the group or account. The format will generally be similar to DOMAIN\USER or DOMAIN\GROUP. The permissions action will fail during the scan if you enter an invalid user or group.

...

...

Use the Permissions to remove list to select if you want to remove All Permissions or All Write permissions.

...

...

Select Apply changes.

...

Understanding Permission Inheritance Restrictions

...