Skip to main content
  • EN

HAHy0ms39RITzCtgW6fShjGUc8jtv3S4Ke4y-QMKsofS349EudVHqSWbdRrtqz9HNJRaF0gqgHB2i08fL9_TVlZHXvR0KFoZZ9aJ7loX5zP2vUt2ffTwkA0NMBs9x-tzRRPa-1TnNIbuo_85UlHmowQ

Netskope Global Technical Success (GTS)

Box - Block Personal Instance Access

 

Netskope Cloud Version - 124

 

Objective

Box personal instance access should be blocked

 

Prerequisite

Netskope CASB Inline license is required

 

Context

Some customers use Box as their official cloud storage application. They might want to allow only their business Box corporate instance and block personal instance. This document will discuss how to achieve this.

 

Do You Know?

  • Netskope acknowledges Box as a Cloud Application and provides a pre-defined cloud app connector.
  • As of March 18, 2025, Netskope's Box predefined cloud app connector can identify instances.

MIRDhr_kl9ieVaUhMTLZQAJV9KffD8N64cV3MIpUVHCaYnctdMqBhA2D58eHmNdFATDFed0NMxtGexP0l_UYwMP8INZRVpPP107cwGJS2X6WWzLaimkdP0yYgGMVcZtX43b3FLaI0udZsC-nNRRMRZo

 

  • Box classifies non-corporate instances as 'Personal'

nfJ3BeX0DLqPYNHZMszJ3xmxBuZyR7tA-V1oAswqtS_JFJFcgJjjCVBfO2tRq07RhenurYhhM3WwX6r_gK8ZWR9JSd_PoNWI6i-Q7EGTXrQEK0sb7x0enzZ2YewiKAR_4Jq3kIoMMmhyXKA4LJyXu5c

 

  • Not all activities include instance detection as a component. Login successful is one of them 

MrvsqFhsJdx4cNCjjo8RdNd7XH-S7gI8PoFHrtZIDTxCwfmaxIKOetxHVq_GbiPxVo9Dw8n0KfjreiJWbNcW1zERsnZM5XEvE8Dqug38-Qn7X3yJlJrinEQS3RXsMXP-wKAvYoP6Az4y0krLUZSIyxg

 

Configuration

  • Step 1 - Instance Tagging

Path: Netskope Tenant UI >>> Skope IT >>> Application Events

Cl0_pyMUZo-b2mNU26ugcwDhO1_ZNqhJFbgu_K4TyueVE8Zi8cNwbyQyqTW6bxGQteTy3rhMMSVyIr8lqHOKUJc-ZPZ_LrryVjF0MYmgLlJyUnAyrv8HLPqJfIhfhjPAc6cz9mV9HYBMh_O8RlNDU3A

 

JV2EBw0VQl6JhXzCypbfy0pkBELfj8Z2_tOIhMQ0D-lJkC2GHjf7w_nGTRRIIa8bIQjAFYpjVWTw2d_j4pEaWge-vRdKnU-jeZ23dupGYZNNtIEoMfII-DMwjrRQNq9WBY9SSRX5hpSBDAseucdewiM

 

  • Step 2 - Real-time protection policy

Path: Netskope Tenant UI >>> Policies >>> Real-time Protection >>> New Policy

mXGMOY_U_GL595O7Xza0ciotQXKOFAlp1ZVGKjY12iHDk1wADhOfktz5jHahKcWfd2JLUNPYtvCSTK5EzPKoUtxjF6npgKbEu0ctYihzLHkRj4ReWbCbIBQxthmJjeWG-iClM4z3nJFayCu9mwULuD4

 

Verification

  • The policy will only take action upon detection of the instance.
  • Step 1 - Try to access Box via personal account

AtYLB2My8o_QhMUqWhNtezeMNxFZ098V_FwO4kli-X4QbNmSiHQozyzb7gnKAunWJtLm6_nRG2p8CCWTb_iiJ_hTFSTw_vCEMiqrFAYhNW8fY3jxaEyfVswdIkY1eawPA2C2hhWLJUV6HyHGkNQyP4M

 

  • Step 2 - Check policy hits

lRLUZWD5DK-_hsjgGIEXeylPrHWQbh0Lx1dLDRBaR0T0hTfRk6L3_p0DfAp2CebKtBGIxSFkQ6I_4bo7ZOCj7tOtQ8eNzYAB-30tMHBjNJCC2mYubSRqyrppoC97mB3pgKM2Nt1LSwfuAWUySSohi7M

 

Terms and Conditions

  • All documented information undergoes testing and verification to ensure accuracy.
  • In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.

 

Notes

  • This article is authored by Netskope Global Technical Success (GTS).
  • For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.

 

Be the first to reply!
Terms & ConditionsCookie settings