Configure Dropbox for the Next Generation API Data Protection
Configure Dropbox for the Next Generation API Data Protection
To configure Dropbox for the Next Generation API Data Protection, follow the instructions below.
Prerequisite
Before configuring Dropbox for the Next Generation API Data Protection, review the prerequisites.
-
A Dropbox team with Business Plus, Advance or Enterprise plan.
-
A user account with team admin role.
Netskope requires a team admin role to grant access to the Box account. Post-grant, you cannot delete or downgrade this account.
If you need to re-grant the Dropbox instance, use the same team admin account you used to create the instance. -
Ensure that the team admin account has permissions to access files under team folder. If not, Netskope cannot discover these files.
-
If you have guest or external users in your SaaS environment belonging to domains considered internal, you must set the appropriate internal domains for Netskope to classify exposure accurately. To set up internal domains, follow this article.
Before you configure Dropbox to integrate with Next Generation API Data Protection, note the following:
Configure Netskope to Access your Dropbox Account
To authorize Netskope to access your Dropbox account, follow the steps below:
-
Log in to the Netskope tenant UI and go to Settings > Configure App Access > Next Gen > CASB API.
-
Under Apps, select Dropbox and click Setup CASB API Instance.
The Setup Instance window opens. -
Under Team Name, enter the name of the Dropbox team. You can get the team name from the Dropbox Admin console > Settings > Team Profile.
-
Under Administrator Email, enter the email address of the user who will receive an email notification when a policy violation or event triggers. This step is optional.
-
Under Instance Name, enter a name of the SaaS app instance. This step is optional and if left blank, Netskope will determine the name of the app instance post grant.
-
Click Grant Access.
You will be redirected to the Dropbox sign-in page.
-
Log in with the Dropbox team admin account.
-
Review the permissions requested and click Allow.
When the configuration results page opens, click Close.
Refresh your browser and you will see a green check icon next to the instance name.
Next, you can view the Next Generation API Data Protection Inventory page to get deep insights on various entities on your Dropbox account. For more information on the Inventory page, see Next Generation API Data Protection Inventory.
You can receive audit events and standard user behavior analytic alerts in Skope IT. To know more: Next Generation API Data Protection Skope IT Events.
Next, you should configure a Next Generation API Data Protection policy. To do so, see Next Generation API Data Protection Policy Wizard.