Enabling API scan in Forcepoint ONE SSE for CSPM

After you have created the service account and enabled the APIs following the instructions above you can go to Forcepoint ONE SSE to enable the API, import the service account key and setup the DLP scanning.

1. In the Forcepoint ONE SSE portal, navigate to Protect > Policies and select Google Apps. On the Google Apps page, select Setup API.
   
   
   
2. On the Google Apps API Setup page, make sure to check the Enable API scanning at the top. For GCP, scroll to the bottom where you will see a table and start by clicking the green plus icon.
   
   
   
3. In the Add Project dialog, enter a Project Name and then click Choose File and upload the JSON key file that you downloaded in the above steps for the service account.
   
   
   
4. Click Continue when done to authorize the API connection.
5. To detect misconfigurations in GCP, check Audit GCP Configuration checkbox.
6. Click OK to save the setup.