Microsoft Purview Self-service access concepts – Microsoft Purview

Table of Contents0.1 Is this page helpful?0.2 In this article1 Important limitations2 Overview3 Terminology4 How to use Microsoft Purview self-service data access policy5 Next steps Article 04/22/2022 2 minutes to read 5 contributors Is this […]

This article helps you understand Microsoft Purview Self-service data access policy.

Important

Microsoft Purview Self-service data access policy is currently in PREVIEW. The Supplemental Terms of Use for Microsoft Azure Previews include additional legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.

Important limitations

The self-service data access policy is only supported when the prerequisites mentioned in Data Use Management are satisfied.

Overview

Microsoft Purview Self-service data access workflow allows data consumer to request access to data when browsing or searching for data. Once the data access request is approved, a policy gets auto-generated to grant access to the requestor provided the data source is enabled for Data Use Management. Currently, self-service data access policy is supported for storage accounts, containers, folders, and files.

A workflow admin will need to map a self-service data access workflow to a collection. Collection is logical grouping of data sources that are registered within Microsoft Purview. Only data source(s) that are registered for Data Use Management will have self-service policies auto-generated.

Terminology

  • Data consumer is anyone who uses the data. Example, a data analyst accessing marketing data for customer segmentation. Data consumer and data requestor will be used interchangeably within this document.

  • Collection is logical grouping of data sources that are registered within Microsoft Purview.

  • Self-service data access workflow is the workflow that is initiated when a data consumer requests access to data.

  • Approver is either security group or Azure Active Directory (Azure AD) users that can approve self-service access requests.

How to use Microsoft Purview self-service data access policy

Microsoft Purview allows organizations to catalog metadata about all registered data assets. It allows data consumers to search for or browse to the required data asset.

With self-service data access workflow, data consumers can not only find data assets but also request access to the data assets. When the data consumer requests access to a data asset, the associated self-service data access workflow is triggered.

A default self-service data access workflow template is provided with every Microsoft Purview account. The default template can be amended to add more approvers and/or set the approver’s email address. For more details refer Create and enable self-service data access workflow.

Whenever a data consumer requests access to a dataset, the notification is sent to the workflow approver(s). The approver(s) can view the request and approve it either from Microsoft Purview portal or from within the email notification. When the request is approved, a policy is auto-generated and applied against the respective data source. Self-service data access policy gets auto-generated only if the data source is registered for Data Use Management. The pre-requisites mentioned within the Data Use Management have to be satisfied.

Next steps

If you would like to preview these features in your environment, follow the link below.

Source Article

Next Post

Configure SaaS offer listing details in Azure Marketplace

Thu May 19 , 2022
Table of Contents0.1 Is this page helpful?0.2 In this article1 Marketplace details2 Add supplemental links (optional)3 Add marketing documents3.1 Add logos3.2 Add screenshots3.3 Add videos (optional)4 Next steps Article 04/25/2022 5 minutes to read 5 contributors […]
Exit mobile version