Create a CASB Profile
You configure Cloud Access Security Broker (CASB) rules to control specific actions on each cloud application to secure your data.
By default, Juniper Secure Edge provides a predefined profile called default-casb-profile. You can choose to either modify and use the predefined profile, or create your own profile.
Once you create a CASB profile, assign it to a Secure Edge policy. By default, the cloud application groups are selected as shown in Table 1 for the respective CASB-supported cloud applications. You cannot edit these groups on the Secure Edge Policy page as this option is grayed out.
CASB-Supported Cloud Applications |
Corresponding Cloud Application Group |
|
---|---|---|
Amazon EFS |
casb-amazonefs-group |
|
Amazon S3 |
casb-amazons3-group |
|
Box |
casb-boxnet-group |
|
Dropbox |
casb-dropbox-clear-group |
|
GitHub |
casb-github-group |
|
Gmail |
casb-gmail-group |
|
Google Chat |
casb-google_chat-group |
|
Google Docs |
casb-google_docs-group |
|
Microsoft OneDrive |
casb-onedrive-group |
|
Microsoft OneDrive Personal |
casb-onedrive_personal-group |
|
Microsoft Outlook |
casb-outlook-group |
|
Microsoft Teams |
casb-msteams-group |
|
Salesforce |
casb-salesforce-group |
|
SharePoint |
casb-sharepoint-group |
|
Slack |
casb-slack-group |
To create a new CASB profile:
Setting |
Guideline |
---|---|
Name |
Enter a unique string of alphanumeric characters; special characters other than -_!@$&*~:. are not allowed. No spaces are allowed; maximum length is 29 characters. |
Activity logging |
Define activity logging for the CASB profile. For example, Login, Download, and Chat. By default, all the options are selected. |