Skip to content

cyral-quickstart/quickstart-crawler-express

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

crawler

crawler

 
 

crawler-job

crawler-job

 
 

install.sh

install.sh

 
 

Repository files navigation

Quickstart Repo Crawler Express

This tool allows you to schedule repo crawler jobs quickly on any standard linux system

Additional info can be found here

Install

You'll need to clone this git repository (or download/extract) on to a basic linux system and run the install.sh script.

git clone https://github.com/cyral-quickstart/quickstart-crawler-express.git
cd quickstart-crawler-express
sudo ./install.sh

Configuration

Configuration can be done in a few simple steps

  1. Login to your Control Plane
    1. Get an API Key
      1. From the bottom left select API Access Keys
      2. Select the + to add a new key
      3. Give it a name and select the following permissions
        • View Datamaps
        • Modify Policies
        • View Sidecars and Repositories
        • Modify Sidecars and Repositories
        • Repo Crawler
      4. Save the produced ID/Secret
    2. Setup a Data Repo
      1. If you haven't already, add a Data Repo
  2. SSH to the Instance you installed the Crawler on
    1. Run crawler
    2. Configure the control plane information
    3. Configure the repo
    4. Configure Data / Account jobs

Once the Job has successfully run you can see if the job successfully reporting by going to Data Repos > Your Repo > Data Map > Auto Updates

Concepts

  • Control Plane Configuration - This is the info required to communicate the results back to the control plane.
  • Repo Configuration - This is related to the Data Repo configuration on the control plane and where the results will be pushed
  • Database Discovery Jobs - This is configuration related to specific databases that live on the Data Repo for Data Classification
  • Local Account Discovery Jobs - This will scan the Data Repo for any defined local accounts and will populate them in the Control Plane under that Data Repo
  • Worker ID - A unique id to track which crawler ran a job.

Config Files

All config files will by default end up at ~/.local/cyral

File Description
controlplane.env Contains all of the control plane connection info
<repo name>/repo.config.env directory contains the Repo configuration
<repo name>/<db name>.env Contains the DB name for data classification discovery

Advanced Configurations

There are a few environment variables that can be used for on demand runs to help with diagnosing errors or modifying how the crawler runs.

Variable Description
CRAWLER_LOG_LEVEL This can be set to trace to increase the logging level. Default is info
CRAWLER_NETWORK_MODE The can be used to control the network mode for the crawler container. Default is host

About

Deploy the Repo crawler on a linux machine

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Contributors 3

  •  
  •  
  •  

Languages