Begin Scanning a Box App
Use these steps to connect the Box application to SaaS Security API to begin scanning assets for policy violations.
To connect Box to SaaS Security API and begin scanning files and folders, you need to:
- Ensure that you have an Box account with has sufficient privileges.
- Grant SaaS Security API access to Box.
- Add the Box app to SaaS Security API, providing SaaS Security API information about your Box.
For information on which automated remediation capabilities SaaS Security API supports with Box, refer to Supported Applications with Remediation.
Prepare To Add Box App
Before you add the Box app, perform prerequisites steps to make use of all the capabilities that the app supports and that make for an efficient onboarding experience.
- (Recommended) Add your Box app domain as an internal domain.
- (Optional) Enable group-based selective scanning.If you plan to use selective scanning using Azure Active Directory, you must retrieve your Azure AD group information before adding your Box application so SaaS Security API can discover and scan assets belonging to the user groups you want to monitor.
- Next Step: Proceed to Add Box App.
Add Box App
In order for SaaS Security API to scan assets, you must consent to specific permissions during the course of adding the Box app. Without the requested permissions, SaaS Security API cannot authenticate with Box and cannot scan assets, even after you successfully install the Box app.
- Ensure that the Box account you plan to use with SaaS Security API has sufficient privileges.Enabling theEdit settings for your companyoption suppresses email notifications. If you do not enable this setting, every collaborator on an asset receives an email notification each time SaaS Security API accesses an asset. When you suppress email notification, actions will still appear in the user’s update feeds and in the audit logs.To connect SaaS Security API, log in to a Box account with Administrator privileges. Make sure the following settings are enabled:
- From within Box, selectand select the Administrator account you want to use.Admin ConsoleUsers and Groups
- Allow this user to see all managed users.
- Add the Box application to SaaS Security API.
- From theDashboard, selectAdd a Cloud App.
- ClickConnect to Box Account.
- Enter the email address and password for the Administrator account you want SaaS Security API to use when connecting to Box and then clickAuthorize.SaaS Security API validates the administrator account and if the account has the right authentication permissions to access all the Box assets. If the account does not have adequate permissions, an on-screen status displays an error alerting you to fix the issue.
- After authentication succeeds, selectGrant access to Box.
- Next Step: Proceed to Customize Box App.
Customize Box App
After you add the Box app, customize the app to make use of capabilities that are unique to this app or that differentiate this app instance from others.
- (Optional) Specify anAlternative account for quarantined files.You can specify a different Box account (in email address format) for the quarantine administrator for precise assignment of incident management responsibilities. If you choose not to specify an alternative account, SaaS Security API uses the onboarding account to quarantined files in theAdmin Quarantinefolder. The Box account for the quarantine administrator does not need to have admin privileges. After you define this quarantine administrator, you cannot modify the setting without deleting the Box app and repeating the onboardng process; therefore, use a service account that persists as administrators join and leave your organization.
- (Optional) Give a descriptive name to this instance and specify an incident reviewer.
- Select the Box n link on the Cloud Apps list.
- Enter a descriptiveNameto differentiate this instance of Box from other instances you are managing.
- Specify anIncident Reviewer Account. Use this setting with caution because the account you provide becomes a collaborator on all risks — even private files.
- ClickDoneto save your changes.
- Next Step: Proceed to Identify Risks.
When you add a new cloud app, then enable scanning, SaaS Security API automatically scans the cloud app against the default data patterns and displays the match occurrences. You can take action now to improve your scan results and identify risks.
- Start scanning the new Box app for risks.
- Select.SettingsCloud Apps & Scan Settings
- In the Cloud Apps row that corresponds to the new Box app, select.ActionsStart Scanning
- During the discovery phase, as SaaS Security API scans files and matches them against enabled policy rules, verify that your default policy rules are effective. If the results don’t capture all risks or you see false positives, proceed to next step to improve your results.
- (Optional) Modify match criteria for existing policy rules.
- (Optional) Configure or edit a data pattern.
Recommended For You
Recommended videos not found.