Enabling Data Protection for Azure Blob Storage
Enabling Data Protection for Azure Blob Storage
Note
Netskope supports DLP scanning on BlobStorage and general-purpose v2 storage accounts only. To upgrade to a general-purpose v2 storage account, refer the Azure documentation located here.
To configure an Azure subscription for Data Protection,
- Register the Microsoft Event Grid in Azure. To learn more: Step 1/4: Register Microsoft Event Grid in Azure for Data Protection.
- Configure an Microsoft Entra ID Application. To learn more: Step 2/4: Configure a Microsoft Entra ID Application for Data Protection .
Note
You can configure multiple subscriptions for DLP Scan and Threat Protection (Malware Scan) with the same Microsoft Entra ID Application.
- Assign permissions to scan Blob storage. To learn more: Step 3/4: Assign Azure Permissions for Data Protection.
- Add the Azure Subscription to the Netskope tenant. To learn more: Step 4/4: Add the Azure Subscription to the Netskope Tenant for Data Protection.
Note
Netskope normalizes the term “Account” to help with cross CSP summaries. Netskope normalized “Account” field maps to Azure Subscription.
Articles
- Step 1/4: Register Microsoft Event Grid in Azure for Data Protection
- Step 2/4: Configure a Microsoft Entra ID Application for Data Protection
- Step 3/4: Assign Azure Permissions for Data Protection
- Step 4/4: Add the Azure Subscription to the Netskope Tenant for Data Protection
- What Triggers a Scan and Billing of Azure Blob Storage?