SaaS Security
Onboard a Dropbox Business App to SSPM
Table of Contents
Onboard a Dropbox Business App to SSPM
Connect a Dropbox Business instance to SSPM to detect posture risks.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
Or any of the following licenses that include the Data Security license:
|
To run scans of your Dropbox Business instance, SSPM connects to the Dropbox Business
instance by using information that you provide. Once SSPM connects, it scans the
Dropbox Business instance and will continue to run scans at regular intervals. You
onboard a Dropbox Business instance by using OAuth 2.0 authorization
Onboard a Dropbox Business App to SSPM Using OAuth 2.0
Connect a Dropbox Business instance to SSPM to detect posture risks.
For SSPM to detect posture risks in your Dropbox Business instance, you must onboard
your Dropbox Business instance to SSPM. SSPM gets access to your Dropbox Business
instance through OAuth 2.0 authorization. Through this onboarding process, SSPM
connects to a Dropbox Business API and, through the API, scans your Dropbox Business
instance for misconfigured settings and account risks.
To onboard your Dropbox Business instance, you complete the following actions:
- Identify the Administrator Account for Granting SSPM Access.During the onboarding process, SSPM redirects you to the Dropbox Business login page. After you log in, Dropbox will prompt you to grant SSPM the access it needs to your Dropbox Business instance.After SSPM establishes the connection, it will perform an initial scan of your Dropbox Business instance, and will then run scans at regular intervals. For SSPM to run these scans, the administrator account that you use to establish the initial connection must remain available. For this reason, we recommend that you use a dedicated service account to grant SSPM access. If you delete the service account, the scans will fail and you will need to onboard Dropbox Business again.
- Verify that your account has the permissions that SSPM will require.Required Permissions: To grant SSPM the access that it requires, you must log in with an account that has Team Admin permissions.Log out of all Dropbox Business accounts.Logging out of all Dropbox Business accounts helps ensure that you log in under the correct account during the onboarding process. Some browsers can automatically log you in by using saved credentials. To ensure that the browser does not automatically log you in to the wrong account, you can turn off any automatic log-in option or clear your saved credentials. Alternatively, you can prevent the browser from using saved credentials by opening the Cloud Management Console in an incognito window.Connect SSPM to Your Dropbox Business Instance.By adding a Dropbox Business app in SSPM, you enable SSPM to connect to your Dropbox Business instance.
- Log in to Strata Cloud Manager.Select and click the Dropbox tile.On the Posture Security tab, Add New instance.Select the option to Log in with Credentials.Connect.SSPM redirects you to the Dropbox Business login page.Enter the credentials for the Dropbox Business account that you identified earlier, and log in to Dropbox Business.Dropbox Business displays a consent form that details the access permissions that SSPM requires.Review the consent form and allow access.
