Add a New Asset Policy Rule
To add a new policy rule for scanning assets stored on your SaaS applications:
- Select PolicyAsset RulesAdd an Asset Rule.
- Enter a Rule Name and an optional Description.
- Select a Severity for the rule.
- Verify that the Status is Enabled.
- Specify the Match
Criteria by Rule Type for your assets.Review information in Building Blocks in Aperture Content Policy.Sensitive documents are identified as a policy rule violation only if the exposure level is violated. For example, you can configure a policy rule to trigger a an alert for a sensitive document that has a Public or External exposure. To specify the exposure level for which to flag a sensitive document as an incident:
- Select the exposure levels for which you want an alert. For example, most sensitive documents should not have a Public exposure so you would select Public to match sensitive documents that have a Public exposure level.
- Select the cloud applications for which this rule is used during a scan.
- Define Untrusted Users and Domains, if you have not already done so.
- Verify that an action is enabled.Automatic remediation is a powerful tool and can modify a large number of assets in a short amount of time. Make sure you perform a test run first (using one policy rule and a small set of assets) before including these actions on additional policy rules.
- For most policy rules, verify that Actions setting
is Create Incident. This option allows you
to identify potential risks for new cloud apps that you add. Then,
after you uncover specific issues that are high-compliance risks
on your network, you can modify the rule or add a new rule that
triggers one of the following actions to Automatically
Remediate Risks:Quarantine—Automatically moves the compromised asset to a quarantine folder.Change Sharing—Automatically removes links that allow the asset to be publicly-accessed.Notify File Owner—Sends an email digest to the asset owner that describes actions they can take to fix the issue.Notify via Bot—(Only for Cisco Webex Teams) Uses a machine account that you created to send a direct message to the asset owner who triggered the policy match.
- Select Send admin alert only
for compliance issues for which you need to take immediate action,
such as policy rules that are high-risk or sensitive. The Aperture
service can send up to five emails per hour on matches against each
Cloud App instance.Enable email alerts only after the Aperture service completes the initial discovery scan so that you are not inundated with emails when historical assets are scanned.
- For most policy rules, verify that Actions setting is Create Incident. This option allows you to identify potential risks for new cloud apps that you add. Then, after you uncover specific issues that are high-compliance risks on your network, you can modify the rule or add a new rule that triggers one of the following actions to Automatically Remediate Risks:
- Save your new policy rule.
Aperture scans assets for exposure levels to identify how and with whom the asset is shared. ...
New Features Introduced in October 2017
New Features Introduced in October 2017 The following table provides a snapshot of new features introduced for Aperture™ in October 2017. Refer to the Aperture ...
New Features Introduced in January 2017
New Features Introduced in January 2017 The following table provides a snapshot of new features introduced for Aperture™ in January 2017. Refer to the Aperture ...
New Features Introduced in May 2017
New Features Introduced in May 2017 The following table provides a snapshot of new features introduced for Aperture™ in May 2017. Refer to the Aperture ...
Building Blocks in Aperture Asset Policy
Building Blocks in Aperture Asset Policy An asset (or content) policy rule has the following information: Field Description Rule Name A name for the policy ...
Aperture service focuses on Content Security, User Activity Monitoring, Security Configuration Controls and Third-Party App Integrations. ...
Change Sharing SaaS applications make it easy for users to collaborate and share information in the cloud. However, tracking and controlling the different types of ...
Manage Aperture Policy
Manage Aperture Policy Policy in Aperture™ is simple and aims to create an awareness of user actions and minimize the risks associated with the use ...
Begin Scanning a Microsoft Exchange App
Use the Aperture service to scan and identify incidents found when scanning assets and email attachments in your MS Exchange app. ...