(New) Policy Management

Overview

The existing QueryPie DAC provides various data policies, including Data Access, Data Masking, Sensitive Data, and Ledger Table Management. However, these policies traditionally require individual configuration for each connection, with rules applied separately to each table and column. Furthermore, the previous system does not offer import or export functionality for these policies.

Starting from version 10.2.6, QueryPie offers a new policy management feature to address these limitations. This enhanced system utilizes tag-based policy application, allowing policies to be dynamically assigned by mapping DBMS object paths with tags. This also enables configuring access to only specific tables through the tags assigned to them.

Using the New Policy Management Feature

To use the new policy management capabilities, you must first activate the feature.

1. Navigate to General > Company management > Security.

2. Under the DB Connection Security section, locate the New DAC Policy Management setting.

3. Set New DAC Policy Management to Enable. (The default value is Disable).

Please carefully review the following points before enabling the New DAC Policy Management feature:

• The "Ledger Table Management" feature must be turned Off before you can activate the New DAC Policy Management.

• Activating the New DAC Policy Management feature will deactivate all existing DAC policies. You will need to create new policies using the new management system. Deactivated existing policies are not deleted and can still be viewed for reference.

• Policies created with this new feature are not compatible with the old policies. There is no option to migrate old policies to the new system.

• To deactivate the New DAC Policy Management feature after it has been enabled, all policies created under this new system must first be deleted.