In version 14 of their DLP product Symantec introduced the ability to scan corporate Box.com accounts via Network Discover to see what confidential data is stored within an organization’s Box.com environment. In Data Insight 5.0 we now have the ability to process Box.com to understand the context of the files in our Box.com account.
In previous posts I covered:
- Configuring a Box.com Network Discover Scan in DLP 14
- Configuring a Tagging Response Rule for Box.com in DLP 14
This guide will cover configuring Box.com scanning and then also provide some screenshots around what it looks like.
How it works
After logging into the Data Insight Console we will need to access the Settings tab of the Management Console to setup our “Cloud Sources” which can be found on the left side of the Console.
In the above screenshot (Figure 1) it shows there is one Cloud Service enabled and we would like to add an additional source by clicking on “Add a new cloud service.” (While I have not seen an official roadmap, I would assume additional services are forthcoming.)
In order to perform the scanning, we will need to authorize the account against the Box.com API
In order to process everything correctly, make sure the owner account is used to connect and use the system. The above screenshot (Figure 3) shows the demo system being authenticated to the system.
One the indexer and collecter are assigned, we can then start the scanning of the Box.com account.
Now that the Cloud Source is configured we can start the Data Insight scan (or wait for the normal schedule). In the below figure (Figure 4) we have clicked on the “Actions” drop down and have selected “Scan Now.”
Once the scan has been completed and the information has been processed, Box.com information will be in the Data Insight system.
Figure 5 shows the result of the scan against the demo system.