Users have the ability to auto-remediate the Individual Permission issues in Secure & Govern. Following are the steps listed to configure and enable auto-remediation rules for Individual Permission issues.
-
Navigate to Settings -> Analysis Rules.
-
Select the desired Issue Type as Individual Permission.
-
Click on Create an auto-remediation rule.
-
Enter Rule Name and Description. Select Next.
-
Select Match Criteria ANY or ALL.
When “ALL” is selected, all the rule conditions must be met for an issue to be auto-remediated. When “ANY” is selected, auto-remediation will occur when any of the rule conditions are met.
-
Enter Rule Condition
-
For Individual Permission issue type, there are two conditions available for selection based on Severity and Sensitive Content
-
Specify the criteria for first condition selected and click on Add Condition to specify the criteria for second condition
-
Specify the criteria for first condition selected and click on Add Condition to specify the criteria for second condition
-
For Individual Permission issue type, there are two conditions available for selection based on Severity and Sensitive Content
-
Enter Rule Action
- For Individual Permission issue type, there are three possible actions available as Remove user permission, Dismiss Issue(s), andDelegate to. Use the Add Condition button to add more than one action.
- For Individual Permission issue type, there are three possible actions available as Remove user permission, Dismiss Issue(s), andDelegate to. Use the Add Condition button to add more than one action.
- Select Next.
- Select whether or not to Apply this rule to previously detected issues that match the selected criteria and click Next.
-
Review the Rule Configuration. Click on Create.
The Back button can be selected at any time to change the rule configuration prior to the rule being created.
-
The Auto-Remediation Rule is created.
Currently, only one auto-remediation rule can be created per issue type.
Additional Resources
- Overview - Secure & Govern Issue Auto-Remediation
- Modify Existing Auto-Remediation Rules
- Auto-Remediation - Empty Group
- Auto-Remediation - External Sharing
- Auto-Remediation - Open Access
- Auto-Remediation - Probable Ransomware
- Auto-Remediation - Public Links
- Auto-Remediation - Suspicious Login
- Auto-Remediation - Unused Group
- Auto-Remediation - Unusual Access