Skip to main content
BlueXP classification

Scan database schemas

Contributors netapp-tonacki amgrissino

Complete a few steps to start scanning your database schemas with BlueXP classification.

Note that after you have enabled database scanning that you can add unique identifiers that BlueXP classification will identify in all your data sources based on specific columns in your databases. This is called the Data Fusion feature. Learn how to add custom personal data identifiers from your databases.

Quick start

Get started quickly by following these steps, or scroll down to the remaining sections for full details.

One Review database prerequisites

Ensure that your database is supported and that you have the information necessary to connect to the database.

Two Deploy the BlueXP classification instance

Deploy BlueXP classification if there isn't already an instance deployed.

Three Add the database server

Add the database server that you want to access.

Four Select the schemas

Select the schemas that you want to scan.

Review prerequisites

Review the following prerequisites to make sure that you have a supported configuration before you enable BlueXP classification.

Supported databases

BlueXP classification can scan schemas from the following databases:

  • Amazon Relational Database Service (Amazon RDS)

  • MongoDB

  • MySQL

  • Oracle

  • PostgreSQL

  • SAP HANA

  • SQL Server (MSSQL)

Caution The statistics gathering feature must be enabled in the database.

Database requirements

Any database with connectivity to the BlueXP classification instance can be scanned, regardless of where it is hosted. You just need the following information to connect to the database:

  • IP Address or host name

  • Port

  • Service name (only for accessing Oracle databases)

  • Credentials that allow read access to the schemas

    When choosing a user name and password, it's important to choose one that has full read permissions to all the schemas and tables you want to scan. We recommend that you create a dedicated user for the BlueXP classification system with all the required permissions.

Note: For MongoDB, a read-only Admin role is required.

Deploy the BlueXP classification instance

Deploy BlueXP classification if there isn't already an instance deployed.

If you are scanning database schemas that are accessible over the internet, you can deploy BlueXP classification in the cloud or deploy BlueXP classification in an on-premises location that has internet access.

If you are scanning database schemas that have been installed in a dark site that has no internet access, you need to deploy BlueXP classification in the same on-premises location that has no internet access. This also requires that the BlueXP Connector is deployed in that same on-premises location.

Upgrades to BlueXP classification software is automated as long as the instance has internet connectivity.

Add the database server

Add the database server where the schemas reside.

  1. From the Working Environments Configuration page, click Add Data Source > Add Database Server.

    A screenshot of the Scan Configuration page where you can click the Add DB Server button.

  2. Enter the required information to identify the database server.

    1. Select the database type.

    2. Enter the port and the host name or IP address to connect to the database.

    3. For Oracle databases, enter the Service name.

    4. Enter the credentials so that BlueXP classification can access the server.

    5. Click Add DB Server.

      A screenshot of the Add DB Server page so you can identify the database.

The database is added to the list of working environments.

Enable and disable compliance scans on database schemas

You can stop or start full scanning of your schemas at any time.

Tip There is no option to select mapping-only scans for database schemas.
  1. From the Configuration page, click the Configuration button for the database you want to configure.

    A screenshot of the Scan Configuration page where you can select the Configuration button.

  2. Select the schemas that you want to scan by moving the slider to the right.

    A screenshot of the Scan Configuration page where you can choose the schemas to be scanned.

Result

BlueXP classification starts scanning the database schemas that you enabled. If there are any errors, they'll appear in the Status column, alongside the required action to fix the error.

Note that BlueXP classification scans your databases once per day - databases are not continuously scanned like other data sources.