Access Management for Google Groups in Native Tag Based Masking

Privacera supports access management for custom group.
This group must be created at the service side, and users must be added to it.
Access for this group can then be granted in BigQuery.

Configuration Steps:

1. Open the vars.connector.bigquery.yml file located in the connector’s instance directory.

2. Add or update the following property:

3. Description: Identity name for native public groups in tag-based masking.

4. Property: CONNECTOR_BIGQUERY_NATIVE_PUBLIC_GROUP_MASKING_IDENTITY_NAME

5. Value for example: connectorDev@googlegroups.com

   Note

   If this property is not set, the default value will be null.

6. Save the file and update the privacera manager

1
2

cd ~/privacera/privacera-manager
./privacera-manager.sh update

1. In PrivaceraCloud, go to Settings -> Applications.

2. On the Applications screen, select BigQuery.

3. Enter the application Name and Description. Click Save. Name could be any name of your choice. E.g. BigQuery Connector for account 123456.

4. Open the BigQuery application.

5. Enable the Access Management option with toggle button.

6. Under the ADVANCED tab, go to bottom in Add New Custom Properties

   Note

   The values shown below are for example purposes only. Replace them with your actual configuration values.

   Add new property

   YAML
   1	ranger.policysync.connector.0.native.public.group.masking.identity.name="value1"

7. Click SAVE.

8. The configured BigQuery connector appears under Applications.

9. Once saved and enabled, the BigQuery connector will start. Then you can hover on the VIEW LOGS button to check the status, either Running or Stopped.

1

Perform the following steps only if the connector does not reflect the updated configuration and requires a restart.

Restart The BigQuery Connector:

1. Go to Settings > Applications > select the BigQuery connector application .

2. Edit the application > Disable it > and Save it.

3. Open the same application again and then: Enable it and Save it.