Domains, Entities, and Attributes

Each domain contains a set of data stored in Guardium that relates to a specific purpose or function (data access, exceptions, policy violations, and so forth). The data is grouped by entities. An entity is a set of related attributes, and an attribute is basically a field value.

Access to the domains is controlled by security roles. Each Guardium role typically has access to a subset of domains, depending on the function of that role within the company. Guardium admin role users typically have access to all reporting domains.

Some domains are available only when optional components (CAS, or Classification, for example) are installed. Other domains are available by default to Guardium admin role users only, for example report information pertaining to the Guardium appliance such as archiving activity.

Similarly, not all attributes are available for all database protocols. When using the query builder, if you notice that an entity or attribute described in the documentation does not appear in the UI, that entity or attribute is not available for the selected database type.