Netskope Help

Mimecast Plugin for Threat Exchange

This document explains how to configure Mimecast with Cloud Threat Exchange in the Netskope Cloud Exchange platform. This integration allows for sharing of file hashes with Netskope that has been identified by Mimecast or Netskope. The file hashes shared with Mimecast can be used to perform various actions, like Block, Allow, or Delete on the messages with attachments matching the file hash(es).

Requirements

To complete this configuration, you need:

  • A Netskope tenant (or multiple, for example, production and development/test instances) with a Netskope Secure Web Gateway license

  • A Threat Protection license for malicious file hash sharing

  • A Netskope Cloud Exchange tenant with the Threat Exchange configured

  • A Mimecast account with a Bring Your Own Threat Intelligence (BYOTI) package for file hash sharing.

Workflow
  1. Create a custom File Profile.

  2. Get the Netskope API token.

  3. Configure Mimecast credentials.

  4. Configure the Threat Exchange Plugin

  5. Configure the Mimecast Plugin.

  6. Configure sharing for Netskope and Mimecast.

  7. Validate the Mimecast Plugin.