Forum Discussion
Microsoft Purview - Structured Database Management, Governance, Security and Protection
Since Microsoft Purview is a Data Governance and Data Security platform, I need to integrate Microsoft Purview with both structured and non-structured databases hosted in the public cloud and on-premises.
The goal is to leverage Microsoft Purview to manage user roles and permissions, enforce data loss prevention policies and rules (e.g., statement-based rules), mask specific columns to restrict certain users from viewing actual data, implement field-level encryption for database fields, and, most importantly, ensure data quality and integrity by preventing unauthorized direct modifications.
I am uncertain about the current capabilities of Microsoft Purview to meet the mentioned requirements. I believe that some features may already be available, while others might not be supported yet.
We at www.prolifics.com have developed a connector called the MPP Connector, designed to scan metadata from on-premises SQL Server and load the lineage directly into Azure Purview. Also, there are around 50+ different data technologies that we support (such as MSSQL, PowerBI, IBM DB2, Azure SQL Database, Azure SQL Managed Instance etc). This solution enables seamless integration and enhanced data governance. For more details, visit our page here: MPP Connector Info, or feel free to reach out to us directly at email address removed for privacy reasons
We'd be happy to assist!
Honest answer from a user here. For most sources, the Purview data catalog cannot show what users/groups have access to the source (this only works for Fabric/PowerBI). This information is only available at the data plane level in the Azure Portal, or by using other APIs. Not really helpful if you want to use it to manage use roles and permissions. If you register data products, it is possible to configure the workflow behind the request (looks like power automate). Purview shows which people have requested access, but not how the request has been imlemented in practise. Therefore, I don't see how the e2e access management flow could be handled in Purview. Field/column level access is something I haven't seen yet.
Currently, Microsoft Purview's governance capabilities for databases focus on labeling database columns based on detected sensitive information types. However, integrating Data Loss Prevention (DLP) directly with these governance tools is not yet available.
Testing the Reply option only (unable to locate the start a new topic button...)
