Key features
- Catalogs: A Trino catalog system that provides access to a data source through a connector. On NexusOne, you can select multiple catalogs to federate queries across different data sources.
- IAM: Manage roles for users and groups. You can either create new roles or use the default roles.
- Data access: Manage data access control by associating roles to specific tags. Each tag determines what data a role can access. You create tags on Datahub or when you are ingesting data on NexusOne.
- Data catalog: Provides access to the DataHub app so you can create tags, view your data lineage, and manage domains, which logically group your data.
Supported Trino catalogs
NexusOne supports the following Trino catalogs:Default roles in NexusOne
NexusOne ships with the following default roles:nx1_ask: Access to the Ask feature.nx1_engineer: Access to the Engineer feature.nx1_ingest: Access to the Ingest feature.nx1_monitor: Access to the Monitor feature.nx1_monitor_admin: Access to the Monitor feature.nx1_quality: Access to the Quality feature.datahub-admin: Access to manage DataHub.
Each role has pre-assigned permissions that you can’t access. However, you can create a new role and associate
it to multiple roles.
Use cases
These examples show how different industries can use NexusOne’s Govern capabilities:- Financial services: Limit data access to sensitive ingested data, such as client account details or regulatory reports, using roles and tags.
- Healthcare: Use IAM to assign a custom role that grants a compliance officer access only to audit logs and regulatory reports, without exposing sensitive patient data.