Managing Environments
This section describes all the tasks associated with Privitar Environments.
AWS Glue Environment constraints
AWS Glue Environments have the following constraints:
They are not able to reference Hadoop Clusters.
The only supported Token Vault type is AWS DynamoDB.
Please choose Custom instead of AWS Glue when creating a new Environment to configure an Hadoop Cluster or use a different Token Vault type.
Creating and Editing an Environment
To create or edit an Environment:
Choose Environments from the navigation menu.
Select Custom from the Create New Environment list box or select the name of the Environment from the Name column of an existing Environment.
Configure the Environment. For more information, see:
Deleting Environments
To delete an Environment:
Choose Environments from the navigation menu.
Select the row of the Environment you want to delete and click Actions > Delete.
Confirm the Deletion by clicking Delete.
Sharing Environments
To support collaboration and multi-tenancy patterns, Environments can be shared with other Teams. A Shared Environment can be used by any team to create and run Jobs, but can only be amended by the Team that created it. In particular:
By default, an Environment is not shared after creation. That is, the Environment is only available to the Team that has created it.
If an Environment is configured to be shared, it is shared globally. That is, the Environment becomes available for use to all Teams.
Only the Team that has created and owns the Environment is able to delete or amend it. Every other Team has read-only access.
In order to ensure autonomy, the visibility of Policies, Protected Data Domains, Jobs and Schemas continues to be limited to the creator of these objects.
Other things to note about Shared Environments are:
Once an Environment has been shared it cannot be unshared. That is, the only way to discontinue its use by other Teams is to delete it.
If an Environment with Hadoop cluster(s) is shared, any participating Team will be able to execute a Job on the Hadoop cluster using any of the defined Service Users.
When triggering Watermarking Investigations using Privitar, you can only select Environments that have been created by the Team you are currently logged into. You are not able to select any global Environments that were created by other Teams.
To share an Environment that has already been created:
Choose Environments from the navigation menu.
On the Environments index page, select the row of the Environment you want to share and click Actions > Share .
Confirm Sharing by clicking Share Environment.
The Environment is now available for global use to other Teams and marked as Shared on the Environments page.