<img src="//pixel.quantserve.com/pixel/p-_JKXxuL8SR7wu.gif?labels=_fp.event.Default" style="display: none;" border="0" height="1" width="1" alt="Quantcast">
blog-banner.jpg

Next-Gen CASB Blog

Controlling External File Sharing with a CASB

By Rich Campagna | March 18, 2016 at 1:20 PM

In the cloud, as in life, sometimes we want to share:

cloud_sharing_controls.jpg

And sometimes we don't:

cloud_sharing_controls2.jpg

Fortunately, a CASB like Bitglass makes control over cloud sharing simple (sorry, no built-in controls for wagon sharing). Let's take a look at how quickly and easily we can control unwanted external file sharing in Office 365's OneDrive. For this example, we'll quarantine any external or public shares from our Sales team that include social security numbers or credit card numbers.

First, we add the Office 365 app from the cloud application catalog. In this case, we have already configured "access" policies, which leverage our hybrid proxy architecture for real-time data protection from both managed and unmanaged devices. To capture data-at-rest and external sharing, we'll add a "cloud" policy. 

cloud_dlp_o365.png

For this policy, we choose to selectively scan only our Sales organization.

cloud_dlp_group_selection.png

We'll then choose two patterns from Bitglass' library of pre-defined Cloud DLP objects (you might choose to create your own objects), and match those with "external" or "public"shares. 

cloud_dlp_patterns.png

Finally, choose the action we want to take on files matching the policy. In this case, we'll quarantine for further investigation before either whitelisting or blocking the share.

cloud_dlp_actions.png

 

That's it! If only childhood were this simple...