Skip to main content
Druva Documentation

Modify Compliance Settings

 

Enable auto-management of violations

inSync administrators can define a period after which inSync automatically resolves stale violations and archive resolved violations. This setting is disabled by default.

Procedure

To enable auto-management of violations

  1. On the inSync Management Console menu bar, click Governance > Compliance and then click Settings.

  2. In the Violation Management section, click Edit.

  3. To automatically resolve critical and non-critical violations after a defined period, select Auto resolve critical violations.

    1. Type the number of days after which you want inSync to automatically resolve critical violations in the Auto Resolve Critical Violations After field.

    2. Type the number of days after which you want inSync to automatically resolve non-critical violations in the Auto Resolve Non-Critical Violations After field.

  4. To automatically archive resolved violations after a defined period, select Auto Archive Resolved Violations.

    • Type the number of days after which you want inSync to automatically archived resolved violations in the Auto Archive Resolved Violations After field.

  5. Click Save to save the defined settings.

inSync creates an audit trail entry for every change made to the settings.

Enable scanning of archive files for violations

By default, inSync does not scan archive files for violations. inSync administrators must enable scanning of archive files in inSync. When scanning of archive files is enabled, inSync scans the following archive file types and reports the violations:

  • *.zip
  • *.tar
  • *.tar.gz
  • *.tar.bz2

Procedure

To enable scanning of archive file for suspected violations 

  1. On the inSync Management Console menu bar, Governance > Compliance and then click Settings.

  2. In the Scan Settings section, click Edit.

  3. Select Include Archive File Types for Scanning and click Save.

inSync starts scanning archive files from the next scheduled backup. 

Whitelist keywords

inSync reports violations based on the criteria defined in the compliance policies. Sometimes inSync might report a violation for a keyword which is not deemed as a sensitive data in your organization. In such cases, you can whitelist the keywords that do not violate the compliance policies of your organization.  

You can reduce false violations by whitelisting specific keywords or phrases that are not deemed as sensitive data according to the policies of your organization. For example, inSync can mark the employee ID numbers or the name of your organization as a violation if they coincide with any sensitive data type. You can whitelist such keywords so that in the next compliance scan inSync skips the whitelisted keywords. 

Adding keywords to whitelist from violation preview

  1. On the inSync Management Console menu bar, click Governance > Compliance. The Compliance Overview page appears.

  2. If you want to view a non-compliant file, click File Violations. If you want to view a non-compliant email, click Email Violations. The list of non-compliant files or emails appears.

  3. Click the violation that you want to view. In the Violations section, a preview of violations is displayed for each sensitive data. A is present beside each violated keyword.

  4. Click to add the keyword or phrase to the whitelist.

  5. (OPTIONAL) If you want inSync to immediately rescan the file after whitelisting the keywords, select Rescan this violation to apply whitelist changes? check box.

  6. Click Add.

The whitelisted keywords and phrases list is present on the Settings page. 

For all subsequent scans, inSync skips any content that contains the whitelisted keywords or phrases (case-insensitive). However, the previously reported active violations for the whitelisted content continue to appear on the Active tab. Only when inSync finds a change made to the file or change to the policy associated with the file, then only inSync scans the file for violations.

Adding keywords to whitelist from Settings

  1. On the inSync Management Console menu bar, click Governance > Compliance. The Compliance Overview page appears.

  2. Click Settings on the left pane.

  3. In the Keyword Whitelist section, click Add.

  4. In the Add Keyword window, add the keywords that you want to whitelist. Use a comma to separate multiple keywords. For example, credit,card,number,00674,EID708

The keywords are displayed in the Keyword Whitelist section.

Deleting whitelisted keywords

  1. On the inSync Management Console menu bar, click Governance > Compliance. The Compliance Overview page appears.

  2. Click Settings on the left pane.

  3. In the Keyword Whitelist section, select the keywords that you want to delete.

  4. In the confirmation window, click Delete.

For all subsequent scans, inSync will report a violation if the deleted whitelisted keyword is found in any file.