Setup Discovery

In each of the services in Discovery, you can configure basic, advanced and custom configurations. To set up the service configuration, expand each configuration below and set their properties. After completing a configuration, click Save & Next to proceed further.

Discovery

AWS Cloud Storage

Expand

You can set up Privacera Discovery in a Docker and Kubernetes (EKS) environment.

Note

When you configure Discovery in an EKS environment, an additional configuration is required. Refer to the Configure Embedded Spark section below.

Prerequisites

Ensure the IAM policies are attached for the Discovery service. For more information, refer (AWS) Create Privacera Manager Host.

Configuration

1. Set Discovery Enable as True.

2. To configure the properties in the Advanced tab, click here.

3. In the Custom tab, you can configure additional properties related to Discovery. For more information on the properties. click here.

Azure Cloud Storage

Expand

You can set up Privacera Discovery in a Docker and Kubernetes (AKS) environment.

Note

For Discovery in an AKS environment, an additional configuration is required. Refer to the Configure Embedded Spark section below.

Prerequisites

Ensure the following prerequisites are met:

A) Azure Storage Account

• Create an Azure storage account. For more information, refer to Create a storage account.
• Create a private-access container. For more information, refer to Create a container
• Get the access key. For more information, refer to View account access keys.

B) Azure Cosmos DB Account

• Create an Azure Cosmos DB. For more information, refer to Cosmos DB. Also, after creating the Cosmos DB, get the following from the Azure portal:
  • Get the URI from the Overview section.
  • Get the Primary Key from the Settings > Keys section.
  • Set the consistency to Strong in the Settings > Default Consistency section.

C) Configure an Azure Event Hub for real-time scan

• Create an Event Hub namespace with a region similar to the region of a Storage Account you want to monitor. For more information, refer to Create an Event Hubs namespace.

• Create Event Hub in the Event Hub namespace. For more information, refer to Create an event hub.

• Create a consumer group in the Event Hub.

  Azure Portal > Event Hubs namespace > Event Hub > Consumer Groups > +Consumer Group. The Consumer Groups tab will be under Entities of the Event Hub page.

• Get the connection string of the Event Hubs namespace. For more information, refer to Get connection string from the portal.

• Create an Event Subscription for the Event Hubs namespace with the Event Type as Blob Created and Blob Deleted. For more information, refer to Create an Event Grid subscription.

  Note

  When you create an event grid subscription, clear the checkbox Enable subject filtering.

Configuration

1. Set Discovery Enable as True.

2. To configure the properties in the Basic and Advanced tab, click here.

3. In the Custom tab, you can configure additional properties related to Discovery. For more information on the properties. click here.

Embedded Spark

Expand

Configuration

To enable Discovery in an EKS environment, enter the cluster info for the property, Discovery K8S Spark Master.

Tip

To get the cluster info, do the following:

1. Run the following command.

   kubectl cluster-info
   

2. Copy the URL from the first line starting with Kubernetes master is running at https://......

Spark from Databricks

Expand

Configuration

Configure the properties. For more information, refer to Spark from Databricks.

You can import/export the configuration of each default service. On the service page, do the following:

• To import, click Import.
• To export, click Export.