Netskope Global Technical Success (GTS)

Use Case -  How to block Gemini AI REST API calls

Netskope Cloud Version - 124.1.0.1727

Objective

Explain how to block Gemini AI REST API calls

Prerequisite

Netskope SWG/CASB inline license are required

Context

Gemini, developed by Google DeepMind, is a family of advanced AI models that can process and generate text, images, audio, video, and code. Its REST API calls enable seamless integration of generative AI models into websites, apps, and software, eliminating the need for hosting or managing complex AI infrastructure.

Do You Know?

• REST APIs allow apps to communicate with AI models over the internet without needing to store or process data locally
• AI services like ChatGPT, Google Gemini, and DALL·E provide REST APIs for text, image, and code generation
• You can call an AI REST API using tools like Python, curl (via terminal), postman among others

Configuration

• Create custom cloud application for Gemini AI as follows:

Path - Netskope Tenant UI >>> Settings >>> Security cloud platform >>> App definition >> Cloud & firewall apps

• Create a real time policy as follows:

Path - Netskope Tenant UI >>> Policies >>> Real-time policies >>> New policy >> Cloud app access

Verification

Using postman and trying to make a REST API call:

Using the terminal and curl to trying to make a REST API call:

It can be checked in SkopeIT:

Terms and Conditions

• All documented information undergoes testing and verification to ensure accuracy.
• In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.

Notes

• This article is authored by Netskope Global Technical Success (GTS).
• For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.