1. Home
    2. SaaS Security
    3. SaaS Security Administrator's Guide
    4. SaaS Security API
    5. Get Started with SaaS Security API
    6. Configure Settings on SaaS Security API
    7. Define Your Internal Domains

    Define Your Internal Domains

    Add internal domains to SaaS Security API to determine if an asset is being shared externally with an untrusted user.
    One of the first things you need to do is to define your internal domains. SaaS Security API uses the list of internal domains you define to determine if the Collaborators on an asset are internal to your company, or if the asset shared with external users. SaaS Security API determines this by matching the domain name in a collaborator’s email address against the list of internal domains defined. Depending on your policy rules, SaaS Security API identifies an asset as an incident if shared with external users.
    A trusted collaborator overrides untrusted domains. Similarly, an untrusted collaborator overrides a trusted domain. For example, you might determine that there is no business reason to trust a file modification from
    fax_service@mycompany.com
    .
    Because SaaS Security API uses the internal domains list to determine the Exposure Level of an asset during the scan process, you must define your internal domains list
    before
     you begin scanning your cloud apps. Additionally, you can build in flexibility when you define your internal domains:
    • Wildcard matching
      —Use of wildcard (*.<domain>) is supported.
    • Subdomains
      —You do not need to explicitly list subdomains; instead, use a wildcard (*.<domain>).
    When you modify the internal domains list, consider that you might need to update the exposure, depending on the discovery state for a given asset:
    Asset
    Rescan required to update exposure?
    Existing, discovered assets
    Yes. Rescan to enable SaaS Security API to recalculate exposure.
    Future, undiscovered assets
    No. SaaS Security API automatically recalculates the exposure.
    The Internal Domains list applies to all cloud apps on SaaS Security API so you must be an administrator with a Super User role or an Admin role with access to All Apps to modify this setting.
    1. Select
      Settings
      Cloud Apps & Scan Settings
      .
    2. Enter a comma-separated list of your
      Internal Domains
      .
    3. Save
       your changes.

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo