Help Center
News
Help Center
News
Popular
Architecture and High-level Information
Scans
Agents
How to Use Dashboards
How to Use Data Asset Inventory
How to Use Tags
How to Manage Business Processes
How to Work with Data Assets and Targets
What is an Asset?What is a Target?How to Get Started with Data Asset InventoryData Assets and Targets - OverviewData Assets and Targets - Data AssetsHow to Use the SDV3™ DashboardExample Data Asset Inventory SetupHow to Create New Data AssetsHow to View Details About Data AssetsHow to Search for a Data AssetHow to View Target Details and Search for a TargetHow to Add a Cloud TargetHow to Add a Collaboration Tools TargetHow to Add a Database TargetHow to Add Jira Cloud as a Target using the Spirion AnyScan (CData) ConnectorHow to Add an E-Mail TargetHow to Create an Exchange Online TargetHow to Add a Remote Machine TargetHow to Add a Website TargetHow to Edit a TargetHow to Remove a TargetHow to Bulk Import TargetsHow to Bulk Assign Tags to TargetsHow to Manage a Target PermissionHow to Remove a Target PermissionWhat is Remediation?How do I Segment Targets Effectively in Spirion Sensitive Data Platform?How do I Assign Agents to Specific Target Segments?Can I Automate Agent Assignment based on Target Type?
How to Install\Uninstall and Set Up Spirion Sensitive Data Platform
How to Use Logs
How to Manage Users and Roles
Reports
Settings and Resources
Additional Resources
Release Notes
Reporting API
Customer Support Articles

Can I Automate Agent Assignment based on Target Type?

Use Agent Tags and Scan Templates to approximate automatic Agent assignment.

While the Spirion Console does not currently have a single "Auto-Assign" toggle that matches agents to targets based on type, you can achieve this level of automation using Agent Tags and Scan Templates.

By aligning your organizational logic with these two features, you can create a "set it and forget it" workflow that effectively automates the assignment process.

1. The "Tag-to-Target" Strategy (Recommended)

The most effective way to automate this is to create a naming and tagging convention that links your worker fleet to your data assets.

Step 1: Tag your Agents by Capability

Assign tags to your agents based on what they are optimized to scan.

  • Tag: DB_Workers (Agents with ODBC drivers and high RAM).
  • Tag: Cloud_Workers (Agents with high-speed internet egress for M365/SaaS).
  • Tag: FileShare_Workers (Agents network-close to your NAS/SAN).

Step 2: Create Type-Specific Scans

When you create a scan for a "SQL Database" target, assign the DB_Workers Agent Tag instead of individual agent names.

  • The Result: Any time you install a new Agent and give it the DB_Workers tag, it is automatically enrolled in every database scan you have scheduled.
  • You never have to edit the scan definition again.

2. Use Scan Templates for Consistency

If you frequently add new targets of the same type (for example, new SharePoint sites or new departmental file shares), use Scan Templates.

  • How it works: Create a "Master Template" for each target type (e.g., Template_SharePoint_Scan). In that template, pre-assign the correct Agent Tags (e.g., Cloud_Workers).
  • The Automation: When a new SharePoint site is added to your environment, simply "Clone" the template. The correct agents are already assigned, ensuring that your "Cloud Workers" are always the ones handling SharePoint data.

3. Advanced Automation via Web API

For large-scale environments, you can fully automate this process using the Spirion Web API.

  • The Workflow:
    1. Write a script that polls your Data Asset Inventory for new targets.
    2. If the script detects a new target of type Database, it uses the API to create a new scan (or update an existing one).
    3. The script automatically includes the DB_Workers agent tag in the API payload for that scan.
  • Benefit: This creates a "Zero-Touch" onboarding process where new data assets are discovered, categorized, and assigned to the correct worker fleet without human intervention.

Best Practices for Automated Assignment

  • Avoid "Universal" Tags: Don't give every agent a General_Worker tag and assign it to everything. This leads to "Agent Contention," where an agent might try to scan a massive database and a local workstation at the same time, causing performance degradation.
  • Monitor "Agent Health" by Tag: Use the Agents page to filter by tag. If your DB_Workers are consistently showing high CPU usage, you know you need to deploy more Agents with that specific tag.
  • Proximity is Still King: Even with automation, ensure your tags reflect geography or network segments (e.g., DB_Workers_EMEA). Automating an assignment that pulls data across an ocean will always result in poor performance.

Summary

You can "automate" assignment by moving away from Individual Agent Assignment and moving toward Tag-Based Assignment.

By combining Agent Tags with Scan Templates, you ensure that the right type of worker is always assigned to the right type of data, even as your environment grows.

Was this article helpful?

Powered by Product Fruits