What's New
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
Resolved Issues
Fixed an issue where a classification scan on a data source completed but had a table failure that was exacerbated by its large size, which prevented the table from being classified.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
New Features
We now have an additional stored procedure for onboarding that allows you to use your own service user, role and warehouse. This new stored procedure is helpful in the situations where you must adhere to a specific naming convention and run into issues when using our default service user.
By default, this stored procedure grants access to everything in your Snowflake account, but you can specify a list of databases to limit what the role can access.
The new stored procedure also grants “MANAGE GRANTS” to ALTR’s service user, enabling support for upcoming features related to the automation of grants on securable Snowflake objects.
Updated documentation to follow. In the mean time, reach out to ALTR Support for assistance.
Note
The existing stored procedure is still available to be used with the ALTR-provided service user, role and warehouse.
Resolved Issues
If a column or table no longer existed in Snowflake because an error occurred on the Snowflake side, you were unable to force disconnect it from ALTR. This issue has been fixed and you can now successfully force disconnect columns and tables from ALTR when an error occurs in Snowflake.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
Enhancements
Previously, several drop downs in ALTR relied on a schema snapshot, which is a cache ALTR stores of objects in the database, refreshed every 72 hours. We have improved the user experience by decoupling from the schema snapshot and performing a live query of schema information directly in Snowflake to always show up-to-day data in ALTR.
This enhancement is available when
connecting a column
creating a row access policy
Additionally, we added drop downs to the Tags page to improve the experience of connecting a tag and to reduce the error rate by enabling you to select schema information instead of manually entering it.
If your automatic tagging job failed, you now have the option to contact ALTR Support directly from the notification to help expedite a resolution.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
New Features
We are excited to announce automatic tagging — a new feature that provides the ability to map ALTR classification results to Snowflake object tags and to automatically assign those tags to Snowflake columns, both in the UI and the API. This feature is available to ALTR Enterprise accounts for both Snowflake and Google DLP classification. Learn more about automatic tagging.
Enhancements
We have improved the Upgrade page by adding easy navigation to ALTR’s pricing details so you can see what features are included in your current plan and a way to contact ALTR to obtain add-on features or to upgrade your plan.
Enhancements
To provide a more consistent user experience, we have standardized the following elements across the user interface:
Skeleton page loaders
Status iconography and font styles
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
Enhancements
Styling of the Snowflake Partner Connect onboarding for setting up ALTR accounts for first-time users has been updated to match the rest of the UI in order to provide a consistent user experience.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
Enhancements
The Alerts system audit report has been updated to reflect the recent “anomaly” to “alert” terminology change.
The Custom Roles field on the Tags page now displays in view mode so you can easily see which tags have this feature enabled or disabled.
Enhancements
For a cleaner user experience, we’ve made a few changes to the user interface:
On the Locks page, the order of the empty state pages has been updated depending on whether you have a lock, a tag or a column, and/or a data source.
The copy on the disconnect and force disconnect modals for tags, columns and data sources has been standardized and clarified.
With the recent release of the Vaulted Tokenization V2 API, the endpoints for Vaulted Tokenization V1 will be deprecated on 9/4/2024.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
Resolved Issues
An error occurred when you tried to view the System Audit page in UTC time zone. To fix this issue, we encoded dates and now use the correct UTC format without a time zone offset, allowing you to view records on the System Audit page as expected.
New Features
You can now configure custom roles when connecting Snowflake object tags in the UI by turning on the ADVANCED: Enable custom roles switch for the tag. Learn more.
Enhancements
The Administrators page has been restored when SCIM is enabled for your organization to allow those who manage users to see a full list of who has access to ALTR. You are still unable to add or edit administrators, which is existing behavior and required for SCIM.
The UI has been updated to reflect Microsoft’s renaming of Azure Active Directory to Microsoft Entra ID.
We are busy enhancing ALTR, but nothing is ready to be released just yet. Check back next week!
New Features
You can now import new allowed values for a Snowflake object tag into ALTR by clicking the Refresh Allowed Values button on the Tag Details page. This feature makes new allowed values available when defining ALTR policies. Learn more.
New Features
You can now set up detokenization on Snowflake object tags through the ALTR UI. You can also continue to perform this task through the API. Learn more.
Enhancements
If you navigate to the Tags page without first connecting a data source, the page now kindly reminds you to connect a data source before continuing.
If you click Contact Support on the Data Sources page, instead of a new email message displaying, the Contact Support modal now displays and uses the email address associated with your account to message ALTR Support. This change provides a more user friendly experience.
Resolved Issues
When you clicked the Help Center icon on a page during the Snowflake Partner Connect onboarding and contacted support, the Email field did not require a valid email address. For a smoother user experience, the Contact Support modal now opens and uses the email address associated with your ALTR account to message ALTR Support.
New Features
You can now disconnect a tag from the ALTR UI if you no longer want ALTR to enforce access governance to columns with that tag. Refer to Disconnecting Tags for more information.
Enhancements
We update two terms throughout the ALTR UI to align with industry standards:
“anomaly” to “alert"
“permission” to “privilege”
New Features
We updated our online documentation to include an optional step to restrict the ALTR service user access to our IPs, providing a more robust security strategy. Refer to ALTR's Snowflake Service User for more information.
Enhancements
The Help Center icon, which displays on every page in the ALTR UI, has been updated to include What’s New. We also renamed the menu link labels and consolidated the two documentation links for a cleaner user experience.
To improve the onboarding of new ALTR users, we updated the Organization Name page by removing the Copy Organization ID button because it caused confusion. Now, when you reach this part of onboarding, enter your organization name and continue.
Enhancements
The classifier list on classification reports now displays in order of most columns to least to allow you more efficiently consume and understand the data.
New Features
As an ALTR administrator, you are now able to refresh the list of key-value pairs allowed on a Snowflake object tag via the API. When the refresh is triggered, ALTR ingests any new allowable values present on the indicated Snowflake object tag. This feature allows you to create policies on new tag values without having to run an object tag import.
Enhancements
The tabs on the Data Management page were reordered and now display as Classification Report, Tags, Columns so you first land on the Classification Report instead of Columns. This change provides a better first-time user flow for adding new data as the tabs now display in the order of tasks to be performed.
New Features
You can now define policy directly on tag names in order to control policy at the tag level without specifying each value; access is the same for all values associated with that tag. On the Create Lock page, Tag Name and Value is the default option, but you can now optionally select Tag Name only. Refer to Creating Column Access Policies in ALTR for more information including use cases for each policy option.
Resolved Issues
The columnName in the clientScatteredFields table, which stores the governed columns, was set to varchar(45) so any columnName with more than 45 characters was truncated. This name truncation caused errors, including a failure to disconnect columns. To fix this issue, the character limit on columnName was increased from 45 to 255.
New Features
You can now connect Snowflake object tags through our UI on the Tags page. Using ALTR’s Tag-Based Policy integration enables easy scaling of data masking and avoids complications relating to schema name changes and data cloning. You can continue to perform this task through the API, but our recommendation is to use the UI. Refer to Connecting Tags for more information.
Enhancements
Two videos were replaced by text to provide a better, always-up-to-date user experience:
Introduction on the Onboarding pages
You're here early on the Classification Report, Column Management, and Analytics pages
Resolved Issues
An issue with the CORS preflight handler prevented access to the Tags page when using the Microsoft OS. To fix this issue, the Tags page is accessible as expected.
Resolved Issues
We fixed an issue that restricted an underscore (_) from being in a Snowflake hostname. We now permit underscores in Snowflake hostnames.
New Features
We now offer the ability to view the status of ALTR-connected Snowflake object tags through our UI on the new Tags page ( → → ). Users can continue to perform this task through the API, but our recommendation is to use the UI. Refer to View Tag Connection Status for more information.
Resolved Issues
We fixed an issue that when a classification job failed, the backend cache was not cleared, which displayed an In Progress status in the UI. Now when a job fails, it is correctly marked as failed in ALTR’s UI.
Enhancements
We made several enhancements to the Classification Report page to provide a better user experience:
Charts were removed to allow ample space to display the full classification names and because the third-party chart component used in ALTR is no longer being maintained.
Number of Total Columns now displays instead of the Percentage of Columns to accurately communicate the status of the classification process.
Page text and a video displayed when a classification scan had not run; however, this information was misleading to users because it was not clear where to go to run a classification report. The text has been updated and video has been removed. Additionally, videos have been removed from the Analytics and the Data Management Columns pages.
Resolved Issues
We fixed an issue where an unintentional scroll bar appeared at the bottom of the Classification Report page when there were 10+ classification reports. Now this scroll bar does not appear.
New Features and Improvements
Minor technical and stability improvements.
New Features and Improvements
ALTR's UI has been updated to standardize the styling of modals across the application.
Bug Fixes
Fixed an issue where invited ALTR administrators were not properly entering a "pending" state. This prevented customers from re-sending invite links to ALTR administrators after the original invite had expired.
New Features and Improvements
Minor technical and stability improvements.
New Features and Improvements
The ALTR UI now automatically trims whitespace when submitting Two-Factor Authentication (2FA) codes during login.
Bug Fixes
Fixed an issue that would occasionally cause classification jobs to stall.
New Features and Improvements
ALTR has released a new version of System Audit Logs! ALTR customers can now access additional detail on actions taken within the ALTR platform including which administrator took an action, when it occurred, and what was changed. The new System Audit Logs can be found in ALTR's UI under System Audit Log Documentation for more information. The new System Audit Logs contain events starting January 2024. To access previous System Audit Logs, contact ALTR Support.
→ . This interface enables users to access up to one week's worth of events at a time. See theThe API Endpoint for Custom Audit Logs now returns a more useful error when submitting payloads that breach the endpoint size limit.
Bug Fixes
Fixed an issue where schema object caches failed to update if there were more than 80 schemas within a database.
Bug Fixes
Fixed an issue where audit logs would not properly trigger for Vaulted Tokenization V2 Endpoints
New Features and Improvements
ALTR Support is now proactively notified when a customer reaches their tokenization limit.
ALTR's Management API has been updated with a new endpoint that enables API users to programmatically identify other ALTR configuration APIs.
ALTR's Management API OpenAPI Specification (Swagger documentation) has been updated to better communicate the new Snowflake Detokenization Policy functionality.
Bug Fixes
Resolved numerous issues in the Vaulted Tokenization API that caused 500 errors.
New Features and Improvements
ALTR's Vaulted Tokenization API will now throttle excessive usage of endpoints. Applications or users that erroneously make too many requests will now be throttled.
ALTR has improved the user experience for force disconnecting columns to align with other areas of the product.
New Features and Improvements
ALTR's Tag Masking API now reports improved error messages when it encounters a problem connecting, disconnecting, or updating a Snowflake Object Tag.
ALTR's Upgrade Page has been updated to account for recent changes to ALTR's free and Enterprise tiers.
Big Fixes
Fixed in-product verbiage that incorrectly labeled System for Cross-domain Identity Management (SCIM).
Fixed an issue where users were unable to update the name of a connected column in ALTR.
Fixed an issue that caused poor performance of ALTR's User Groups endpoints in the Management API.
Fixed an issue where ALTR's Tag Masking API reported past states for tags if they had been previously disconnected and reconnected to ALTR.
New Features and Improvements
Users can now use ALTR's user interface to indicate tokenized data. This can then be used to control access to detokenize data via Column Access Policies. To mark a column as tokenized, check the option when connecting or editing a column.
Single Sign-On (SSO) and System for Cross-Domain Identity Management (SCIM) have been moved to ALTR's Enterprise tier. Now, all Enterprise or above ALTR customers can utilize SSO and SCIM.
The limit for free-tier ALTR accounts has been increased to 3 data source connections, from 1. This enables free-tier ALTR users to get even more value from the platform.
Extension functions for Snowflake data masking have been updated to include information on the Snowflake Object Tag that dictated access control. This enables users of ALTR's Snowflake Object Tag integration to customize masking behavior based on the value of the Snowflake Object Tag.
Custom Role functionality for Snowflake data masking has been updated to include Snowflake Object Tag information. This enables users of ALTR's Snowflake Object Tag integration to customize role behavior based on the value of a Snowflake Object Tag.
Enforcing ALTR security policies on columns in views is no longer in beta.
Bug Fixes
Several bugs were fixed that caused errors in the Vaulted Tokenization API.
New Features and Improvements
ALTR's Snowflake Object Tag integration now supports custom roles. This enables ALTR customers to customize which role(s) are considered for access control. Custom Role functionality is only available when configuring tags from ALTR's Tag Masking API.
ALTR has updated in-product verbiage relating to API keys to better communicate the relationship between API key names and secrets to HTTP Basic Authentication.
Bug Fixes
ALTR fixed an issue where users could submit partial phone numbers for administrators.
ALTR fixed an issue where users could enter invalid email addresses for administrators.