Create a scan rule set

In a Microsoft Purview catalog, you can create scan rule sets to enable you to quickly scan data sources in your organization.

A scan rule set is a container for grouping a set of scan rules together so that you can easily associate them with a scan. For example, you might create a default scan rule set for each of your data source types, and then use these scan rule sets by default for all scans within your company. You might also want users with the right permissions to create other scan rule sets with different configurations based on business need.

Steps to create a scan rule set

To create a scan rule set:

  1. From your Azure Microsoft Purview governance portal, select Data Map.

  2. Select Scan rule sets from the left pane, and then select New.

  3. From the New scan rule set page, select the data sources that the catalog scanner supports from the Source Type drop-down list. You can create a scan rule set for each type of data source you intend to scan.

  4. Give your scan rule set a Name. The maximum length is 63 characters, with no spaces allowed. Optionally, enter a Description. The maximum length is 256 characters.

    Screenshot showing the Scan rule set page.

  5. Select Continue.

    The Select file types page appears. Notice that the file type options on this page vary based on the data source type that you chose on the previous page. All the file types are enabled by default.

    Screenshot showing the Select file types page.

    The Document file types selection on this page allows you to include or exclude the following office file types: .doc, .docm, .docx, .dot, .odp, .ods, .odt, .pdf, .pot, .pps, .ppsx, .ppt, .pptm, .pptx, .xlc, .xls, .xlsb, .xlsm, .xlsx, and .xlt.

  6. Enable or disable a file type for schema and classification by selecting or clearing its check box. If you choose a Data Lake type data source (for example, Azure Data Lake Storage Gen2 or Azure Blob), enable the file types for which you want to have schema extracted and classified.

    Important

    De-selecting a file type doesn't mean it won't be ingested. The file's information will still be ingested, but its schema and classifications will not be extracted.

  7. For certain data source types, you can also Create a custom file type.

  8. Select Continue.

    The Select classification rules page appears. This page displays the selected System rules and Custom rules, and the total number of classification rules selected. By default, all the System rules check boxes are selected

  9. For the rules you want to include or exclude, you can select or clear the System rules classification rule check boxes globally by category.

    Screenshot showing the Select classification rules page.

  10. You can expand the category node and select or clear individual check boxes. For example, if the rule for Argentina.DNI Number has high false positives, you can clear that specific check box.

    Screenshot showing how to select system rules.

  11. Select Create to finish creating the scan rule set.

Create a custom file type

Microsoft Purview supports adding a custom extension and defining a custom column delimiter in a scan rule set.

To create a custom file type:

  1. Follow steps 1–5 in Steps to create a scan rule set or edit an existing scan rule set.

  2. On the Select file types page, select New file type to create a new custom file type.

    Screenshot showing how to select New file type from the Select file types page.

  3. Enter a File Extension and an optional Description.

    Screenshot showing the New custom file type page.

  4. Make one of the following selections for File contents within to specify the type of file contents within your file:

    • Select Custom Delimiter and enter your own Custom delimiter (single character only).

    • Select System File Type and choose a system file type (for example XML) from the System file type drop-down list.

  5. Select Create to save the custom file.

    The system returns to the Select file types page and inserts the new custom file type as a new tile.

    Screenshot showing the new custom file type tile on the Select file types page.

  6. Select Edit in the new file type tile if you want to change or delete it.

  7. Select Continue to finish configuring the scan rule set.

Ignore patterns

Microsoft Purview supports defining regular expressions (regex) to exclude assets during scanning. During scanning, Microsoft Purview will compare the asset's URL against these regular expressions. All assets matching any of the regexes mentioned will be ignored while scanning.

The Ignore patterns blade pre-populates one regex for spark transaction files. You can remove the pre-existing pattern if it is not required. You can define up to 10 ignore patterns.

Screenshot showing the ignore patterns blade with four defined regular expressions. The first is the pre-populated spark transaction regex, the second is \\.txt$, the third is \\.csv$, and finally .folderB/.*.

In the above example:

  • Regexes 2 and 3 ignore all files ending with .txt and .csv during scanning.
  • Regex 4 ignores /folderB/ and all its contents during scanning.

Here are some more tips you can use to ignore patterns:

  • While processing the regex, Microsoft Purview will add $ to the regex by default.

  • A good way to understand what url the scanning agent will compare with your regular expression is to browse through the Microsoft Purview data catalog, find the asset you want to ignore in the future, and see its fully qualified name (FQN) in the Overview tab.

    Screenshot showing the fully qualified name on an asset's overview tab.

System scan rule sets

System scan rule sets are Microsoft-defined scan rule sets that are automatically created for each Microsoft Purview catalog. Each system scan rule set is associated with a specific data source type. When you create a scan, you can associate it with a system scan rule set. Every time Microsoft makes an update to these system rule sets, you can update them in your catalog, and apply the update to all the associated scans.

  1. To view the list of system scan rule sets, select Scan rule sets in the Management Center and choose the System tab.

    Screenshot showing the list of system scan rule sets.

  2. Each system scan rule set has a Name, Source type, and a Version. If you select the version number of a scan rule set in the Version column, you see the rules associated with the current version and the previous versions (if any).

    Screenshot showing a system scan rule set page.

  3. If an update is available for a system scan rule set, you can select Update in the Version column. In the system scan rule page, choose from a version from the Select a new version to update drop-down list. The page provides a list of system classification rules associated with the new version and current version.

    Screenshot showing how to change the version of a system scan rule set.

Associate a scan with a system scan rule set

When you create a scan, you can choose to associate it with a system scan rule set as follows:

  1. On the Select a scan rule set page, select the system scan rule set.

    Screenshot showing how to select a system scan rule set for a scan.

  2. Select Continue, and then select Save and Run.