Enabling the Box Securlet

book

Article ID: 171137

calendar_today

Updated On:

Products

CASB Security Standard CASB Security Premium CASB Security Advanced CASB Audit CASB Gateway CASB Gateway Advanced

Issue/Introduction

Enable the box securlet

Resolution

Prerequisites
Before you enable the Box Securlet on your CloudSOC account:

  •  You must have Administrator privileges on your CloudSOC account.
  •  You must have an enterprise account on Box.
  •  The email address you use as the username for the administrator login on your Box account must be exactly the same as the email address that you use as your CloudSOC username. Furthermore, this email address must be within the primary or secondary domains listed for your Elastica CloudSOC account. To confirm, login to CloudSOC, choose <username> > Settings > General , and check your domains. If necessary, contact Elastica technical support to add additional secondary domains.
  •  We strongly recommend that a Box administrator activates the Securlet. However, if necessary, a Box Co-Admin can activate the Securlet, subject to the following limitations:
    •  CloudSoc does not have visibility into the activities of Box Admin and other Co-admins.
    •  CloudSoc cannot scan the documents of the Box Admin and other Co-admins
    •  CloudSoc cannot remediate the content of the Box Admin and other Co-admins
  • The Co-Admin must hold the following administrative privileges. Otherwise the Securlet exhibits API failures and loss of functionality:
    •  Manage users
    •  Manage groups
    •  View users' content
    •  Edit users' content
    •  Log in to users' accounts
    •  View settings for your company
    •  Edit settings for your company
    •  Run new reports and access existing reports

Enabling the Box Securlet

This section describes how to enable the Elastica Box Securlet for a single Box account. If you
want to enable the Box Securlet for multiple Box accounts, follow this procedure to activate the
Box Securlet for the first account, then use the procedure in Enabling the Box Securlet for
additional Box accounts .

  1.  Login to CloudSOC using your administrator credentials.
  2.  Go to the Elastica App Store by clicking Store in the left side navigation bar.
  3.  In the Store, go to the Securlets area and locate the tile for the Box securlet.
  4.  On the entry for Box, click Details .
  5.  On the page about the Box Securlet, click Enable . CloudSOC sends an activation request to Elastica for the Box Securlet. The label on the Enable button changes to “Request Pending.” When Elastica approves the activation request, the button label changes again to “Activate.” During weekday business hours Pacific time, activation usually takes about 20 minutes. Contact your Elastica representative if the activation takes unusually long.
  6.  Click Activate to activate the Securlet.
  7.  CloudSOC prompts you to choose either a full or selective scan of your Box account users and folders. Choose one option and click Activate Securlet as shown in the example below.
  8.  CloudSOC prompts you for an Account Name. The Box Securlet supports multiple Box accounts, so enter an account name that helps you remember which Box account it is for.
  9.  If you want CloudSOC to import all your Box users with Active status, mark the "Import as active users" checkbox. Otherwise, the users' statuses are automatically set to Inactive, and you must manually change them to Active later. Inactive users cannot access SaaS apps through the Elastica gateway.
  10.  A Box authentication portal opens. Enter the credentials for your Box Administratoraccount and click Authorize .
  11. Note: Elastica CloudSOC uses industry standard protocols to verify the identity of the user via Box. It does not get or store any user credentials. Box shows you a page asking for your permission to allow CloudSOC to connect to your Box account. The page also lists the permissions being granted to Elastica CloudSOC.
  12.  Click Grant Access to Box to allow CloudSOC to connect to your enterprise account.
  13.  If you chose Selective Scan in Step 7, use the tools on the Define Scan Policies dialog box to create granular scan policies that scan only specific users or groups, or exclude specific users or groups from Securlet scanning.
    1.  Use the Policy Type buttons to choose whether the Securlet scans only the items described in the policy, or scans everything except the described items.
    2.  Use the Users menu to choose which groups and users are included or excluded.
    3.  Use the Folders menu to choose which folders are included or excluded. To add a folder, choose Specific folders matching keywords and then enter a full or partial folder name.
    4.  Click Add Rule near the bottom of the box to add additional user, group, or folder rules to the scan policy.
    5.  Click Start Scan .

CloudSOC redirects you back to the Elastica app store. The page shows a status message about the operation you just performed. If you see a success message, the Securlet has been successfully enabled on your account. However, if you get an error message, contact Elastica support.

The Box Securlet is now enabled on your CloudSOC account.