Configure data at rest discovery in Forcepoint CASB

If you prefer to enable and configure data at rest discovery in Forcepoint CASB instead of the Forcepoint Security Manager, follow these steps:

Steps

  1. In Forcepoint CASB, go to Settings > Resources > Assets.
  2. Select the cloud application (asset) from the list. The asset must have a configured API connection. For more information, see Configure a cloud application API connection in Forcepoint CASB (mentioned below).
  3. Expand the Data Classification section.
  4. Enter an Archive folder path. This path is needed for some data at rest policies, such as Remove sharing permissions, Keep a safe copy, and Quarantine. The archive folder must reside on the scanned asset, so the path needs to match the browser URL.
  5. Click Save archive folder settings.
  6. When you select the Quarantine mitigation in a data at rest policy, you have the option of leaving a note where the sensitive file was located. You can customize the note here.
    To edit the current note:
    1. Click the download icon next to the format icon (docx, xlsx, pptx, pdf, or txt).
    2. Open the downloaded note, edit the text, and save the file
    3. Click the upload icon, browse to the file, then click Open.
    To upload a new note:
    1. Click the upload icon, browse to the file, then click Open.
    To restore the note to the default:
    1. Click the restore icon.
    2. Confirm that you want to restore the default note.
  7. Click Save quarantine note settings.