Microsoft Purview · Unified Catalog Governance

Data Health Owner

Create, update, and read artifacts in Data Estate Health management area of Unified Catalog.

Scope: Full read/write access to Data Estate Health management

Permissions

  • Create custom data health reports and dashboards
  • Configure data quality monitoring and alerts
  • Update data health management settings
  • Access full Data Estate Health explorer view
  • Create data observability configurations
  • Manage data health insights and recommendations

Common use cases

  • Data governance teams building custom health dashboards
  • Creating executive reports on data quality and catalog health
  • Setting up automated data quality monitoring and alerts
  • Configuring data observability across data estate
  • Building reports to track catalog adoption and maturity
  • Developing custom metrics for data governance KPIs

Best practices

  • Limit to data governance analysts responsible for health monitoring
  • Create standard health dashboards for stakeholders
  • Configure proactive alerts for data quality issues
  • Regular review of data estate health metrics
  • Share health insights with domain owners and stewards
  • Use for continuous improvement of catalog quality

Security considerations

  • Can configure alerts and reports visible to others
  • Health data may reveal organizational data quality gaps
  • Assign to trusted data governance team members only
  • Configuration changes affect organization-wide health views

Common questions

When should I assign the Data Health Owner role?

Assign Data Health Owner when you need to: Data governance teams building custom health dashboards; Creating executive reports on data quality and catalog health; Setting up automated data quality monitoring and alerts; Configuring data observability across data estate; and Building reports to track catalog adoption and maturity. It is part of Microsoft Purview and should be granted as a least-privilege alternative to broader roles like Global Administrator.

What can someone with the Data Health Owner role do?

The Data Health Owner role grants permissions including: Create custom data health reports and dashboards; Configure data quality monitoring and alerts; Update data health management settings; Access full Data Estate Health explorer view; Create data observability configurations; and Manage data health insights and recommendations. See the Permissions section above for the full list.

What are the security risks of the Data Health Owner role?

Key considerations when assigning Data Health Owner: Can configure alerts and reports visible to others; Health data may reveal organizational data quality gaps; Assign to trusted data governance team members only; and Configuration changes affect organization-wide health views. Review the Security considerations section before assignment, and pair with Privileged Identity Management (PIM) for just-in-time access where possible.

Official Microsoft Learn documentation →

Open the interactive RBACMap →