Column Masks

This feature may not be available in your environment. Please contact sales.

A column mask allows you to limit the visibility of data in specific columns. With column masks, users will only see a limited version of the data in those columns, unless they have the permission to see the data unmasked.

Each data source has its own set of masking capabilities, so when creating a masking rule, you will need to specify the type of masking algorithm to use.

By default, the mask is applied to all users, groups, or access controls specified in the who-list of the mask. However, exceptions can be made by adding specific entities to the who-list. Additionally, some data sources may have specific permissions that grant users the ability to see all data unmasked.

Note: Column masks imported from data sources cannot be edited within Raito. It is recommended to create new masking rules within Raito to replace existing ones.

Masks

Creating a Mask

Creating a mask is similar to creating a grant, with a few key differences:

  • Only columns can be selected for the what-list.
  • An additional step is available to choose the type of masking you want to apply.
    Create Mask - Select Type