Scan StorageGRID data
Suggest changes
PDFs
Complete a few steps to start scanning data within object storage directly with BlueXP classification. BlueXP classification can scan data from any Object Storage service which uses the Simple Storage Service (S3) protocol. This includes NetApp StorageGRID, IBM Cloud Object Store, Linode, B2 Cloud Storage, Amazon S3, and more.
NOTE Using the BlueXP classification that is part of the core BlueXP, you can now scan StorageGRID data. see Scan StorageGRID data. The remaining information here is relevant only for BlueXP classification legacy versions 1.30 and earlier.
Quick start
Get started quickly by following these steps, or scroll down to the remaining sections for full details.
Review object storage prerequisitesYou need to have the endpoint URL to connect with the object storage service.
You need to have the Access Key and Secret Key from the object storage provider so that BlueXP classification can access the buckets.
Deploy the BlueXP classification instanceDeploy BlueXP classification if there isn't already an instance deployed.
Add the Object Storage ServiceAdd the object storage service to BlueXP classification.
Select the buckets to scanSelect the buckets that you'd like to scan and BlueXP classification will start scanning them.
Reviewing object storage requirements
Review the following prerequisites to make sure that you have a supported configuration before you enable BlueXP classification.
-
You need to have the endpoint URL to connect with the object storage service.
-
You need to have the Access Key and Secret Key from the object storage provider so that BlueXP classification can access the buckets.
Deploying the BlueXP classification instance
Deploy BlueXP classification if there isn't already an instance deployed.
If you are scanning data from S3 object storage that is accessible over the internet, you can deploy BlueXP classification in the cloud or deploy BlueXP classification in an on-premises location that has internet access.
If you are scanning data from S3 object storage that has been installed in a dark site that has no internet access, you need to deploy BlueXP classification in the same on-premises location that has no internet access. This also requires that the BlueXP Connector is deployed in that same on-premises location.
Upgrades to BlueXP classification software is automated as long as the instance has internet connectivity.
Adding the object storage service to BlueXP classification
Add the object storage service.
-
From the Working Environments Configuration page, click Add Data Source > Add Object Storage Service.
-
In the Add Object Storage Service dialog, enter the details for the object storage service and click Continue.
-
Enter the name you want to use for the Working Environment. This name should reflect the name of the object storage service to which you are connecting.
-
Enter the Endpoint URL to access the object storage service.
-
Enter the Access Key and Secret Key so that BlueXP classification can access the buckets in the object storage.
-
The new Object Storage Service is added to the list of working environments.
Enabling and disabling compliance scans on object storage buckets
After you enable BlueXP classification on your Object Storage Service, the next step is to configure the buckets that you want to scan. BlueXP classification discovers those buckets and displays them in the working environment you created.
-
In the Configuration page, click Configuration from the Object Storage Service working environment.
-
Enable mapping-only scans, or mapping and classification scans, on your buckets.
To: Do this: Enable mapping-only scans on a bucket
Click Map
Enable full scans on a bucket
Click Map & Classify
Disable scanning on a bucket
Click Off
BlueXP classification starts scanning the buckets that you enabled. If there are any errors, they'll appear in the Status column, alongside the required action to fix the error.