Begin Scanning a Gmail App

To begin scanning a Gmail app:
  1. Enable the privileges required for communication between Prisma SaaS and the Gmail app.
    To establish communication between the two services, confirm the following:
    • The Google administrator account has administrative privileges to read, write, and relocate assets in the app.
    • The app is enabled for API access. API access provides visibility into the assets in Gmail and grants access to Prisma SaaS to monitor any sharing of assets.
    • Ensure that the Google administrator email domain matches the existing domain on Prisma SaaS. For domain exceptions, contact customer support.
  2. Add the Gmail app.
    1. From the Prisma SaaS
      Dashboard
      , select
      Add a Cloud App
      .
    2. Select
      Gmail
      and enter the email address for the Google account with administrative privileges.
      gmail-tile-frame.png
    3. Click
      Connect to Gmail Account
      .
    4. Enter the Google account password.
      Upon successful authentication, the new Gmail app is added to the list of Cloud Apps as Gmail 
      n,
      where
      n
      is the number of Gmail app instances that you have connected to Prisma SaaS, for example Gmail 1.
  3. Add policy rules.
    When you add a new cloud app, Prisma SaaS automatically scans the app against the default data patterns and displays the match occurrences. As a best practice, consider the business use of your app to determine whether you want to Add a New Asset Rule to look for risks unique to Gmail.
  4. (Optional)
    Configure or edit a data pattern.
    You can Configure Data Patterns to identify specific strings of text, characters, words, or patterns to make it possible to find all instances of text that match a data pattern you specify.
  5. Start scanning the Gmail app for policy violations and data exposure.
    1. Select
      Settings
      Cloud Apps & Scan Settings
      .
    2. In the Cloud Apps row that corresponds to the Gmail app, select
      Actions
      Start Scanning
      .
  6. Monitor the results of the scan.
    As Prisma SaaS scans files and matches them against enabled policy rules, you can Monitor Scan Results on the Dashboard to verify your policy rules are effective. Monitoring the progress of the scan during the discovery phase allows you to Fine-Tune Policy to modify the match criteria and ensure better results.

Related Documentation