SaaS Security Administrator's Guide
    : Begin Scanning a Dropbox App
    Focus
    Download PDF
    Focus
    1. Home
    2. SaaS Security
    3. SaaS Security Administrator's Guide
    4. Data Security
    5. Secure Sanctioned SaaS Apps on Data Security
    6. Add Cloud Apps to Data Security
    7. Begin Scanning a Dropbox App
    Download PDF

    SaaS Security Administrator's Guide

    Begin Scanning a Dropbox App

    Table of Contents

    Begin Scanning a Dropbox App

    Authorize Data Security to connect to Dropbox to scan all content shared within the app.
    • Known Issue: When you generate a public sharing link for a folder, the folder becomes public. However, due to a new set of Dropbox APIs, the exposure of the files and folders inside that parent folder are not indicated correctly. This issue occurs only for accounts on the team space experience.
    • Support for automated remediation capabilities varies by SaaS application.
    Use the following procedure to connect a Dropbox app to Data Security and begin scanning assets.
    1. To add the SaaS application, go to Data SecurityApplicationsAdd ApplicationDropbox.
      1. Select the application and enter the email address and password for the account.
        • For Dropbox, the account must have Admin role privileges.
      2. Connect to Dropbox Account.
        The application is added to the list of Cloud Apps on Data Security.
    2. (Optional) Enter a descriptive name for the app instance.
      In the list of Cloud Apps, click application name and add a descriptive name so that you can identify this instance from any other instances of the same application.
    3. (Dropbox Only) Enable Admin Quarantine.
      Enter the admin account email in SettingsCloud Apps & Scan Settings > DropboxAccount for Admin Quarantine. Click Done to save your setting.
    4. Define global scan settings.
    5. Add policy rules.
      When you add a cloud app, Data Security automatically scans the app against the default data patterns and displays any match occurrences. As a best practice, consider the business use of your applications to determine if you need to Add a New Data Asset Policy to look for incidents unique to Dropbox.
    6. (Optional) Configure or edit a data pattern.
      You can Configure Data Patterns to identify specific strings of text, characters, words, or patterns to make it possible to find all instances of text that match a data pattern you specify.
    7. To start scanning Dropbox for incidents, Data SecurityApplicationsDropboxEnable Scanning.
      Data Security scans assets in the associated app and identifies possible incidents. Depending on the number of users and assets, it might take some time to complete the process. However, as soon as you begin to see this information populating the Dashboard, you can begin to Assess Incidents.
    8. Monitor the results of the scan.
      As Data Security scans files and matches them against enabled policy rules, you can Monitor Scan Results on the Dashboard to verify that your policy rules are effective. Monitoring the progress of the scan during the discovery phase allows you to Fine-Tune Policy to modify the match criteria and ensure better results.

    © 2024 Palo Alto Networks, Inc. All rights reserved.