Netskope Global Technical Success (GTS)
Block Google Drive Personal Instance Access
Netskope Cloud Version - 122
Objective
Google Drive personal account access should be blocked
Prerequisite
Netskope CASB Inline license is required
Context
Some customers use Google Suite, with Google Drive as their official Storage application. They might want to allow only their business Google Drive instance and block personal Gdrive accounts. This document will discuss how to achieve this.
Do You Know?
- Netskope acknowledges Google Drive as a Cloud Application and provides a pre-defined cloud app connector.
- As of Dec 10 2024, Netskope's Google Drive predefined cloud app connector can identify instances.
Configuration
- Step 1 - Instance Tagging
Path: Netskope Tenant UI >>> Policies >>> Profiles - - - App Instance >>> New Custom App Instance >>> New App Instance
Note - Netskope enables administrators to name application instances using Application Events.
- Step 2 - Real-time protection policy
Path: Netskope Tenant UI >>> Policies >>> Real-time Protection >>> New Policy
Note:
If you want to allow “View” access to personal account but block Upload and Downloads, you can select Upload and Download from the Activities section.
If left blank, the page access will be completely blocked.
Verification
- Step 1 - Try to access Google Gmail via personal account
- Step 2 - Check policy hits
Terms and Conditions
- All documented information undergoes testing and verification to ensure accuracy.
- In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.
Notes
- This article is authored by Netskope Global Technical Success (GTS).
- For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.