About remediation workflows

In large storage environments, it can become difficult to assign the responsibility of remediating data resources to data owners and custodians. Security and storage administrators have to manually inform data owners about issues with the resources that they own. Also, it can be tedious to track remediation actions on such resources.

Remediation workflows provide an easy way to fan out remediation tasks among configured custodians and data owners. The custodians are responsible for the data resources and can take a decision about the best way to remediate them. To understand how custodians are assigned in Data Insight, refer to the Veritas Data Insight User's Guide.

You can use workflows to define a process to distribute remediation tasks to custodians. You can create the following workflows for different remediation tasks:

Depending on the type of workflow, the custodian may perform the following actions:



Entitlement Review

Review the user permissions on folders that the custodian owns and automatically trigger a permission remediation workflow to execute the changes.

To trigger a permission remediation action, you must first configure the permission remediation settings.

DLP Incident Remediation

Choose the configured remediation actions, and submit the same for execution by the DLP Enforce Server.

Ownership Confirmation

Confirm the ownership of resources. Once the custodians confirm or deny the ownership, and the workflow is complete, the status summary is displayed in the Data Insight Management Console. A Data Insight administrator may review the status and take further actions based on it.

Records Classification

Mark a file as Record or No record.

When the custodians submit their response and a file marked as Record, Data Insight automatically sends a request to Enterprise Vault™ to archive the document. and apply configured post-processing actions on the document if the following conditions are fulfilled:

  • Enterprise Vault is configured and if the option to use EV for archiving is selected when creating the workflow template.

  • Automatic response is enabled in the workflow.

Once you submit a workflow from the Data Insight console, the custodians receive an email notification with a link to the Self-Service Portal. They can log in to the portal, choose the necessary remediation actions, and submit the same for execution by the DLP Enforce Server, Enterprise Vault server, or the Data Insight Management Server, depending on the type of workflow.


If you do not have a valid portal license or if your base or portal license has expired, Data Insight disables the option to create workflows.

Figure: Workflow lifecycle

Workflow lifecycle

See About workflow templates.

See Monitoring the progress of a workflow.

More Information

Creating a workflow using a template

Managing workflows