Create a Cloud Data Discovery policy

Note

The cloud scan policy is a special type of API access policy, which can apply to only one cloud application.

  1. Go to Protect > API Access Policy and click the Cloud Data Discovery tab.

  2. Click New.

  3. Enter a policy name and description.

  4. Select a content inspection type – None, DLP Scan, or Malware Scan.

    If you select Malware Scan, click the toggle if you want to use an external service for scanning.

  5. Under Content Scanning, select a data type.

  • If you selected Malware Scan as the content inspection type, the Data Type field does not appear. Skip this step.

  • For ServiceNow cloud applications, select Structured Data if you want to scan fields and records.

  1. Perform either of the following steps, depending on the content inspection type you chose:

  • If you selected DLP Scan, select a content rule template.

  • If you selected None or Malware Scan, go to the next step to select a context type.

  1. Under Context Rules, select a context type and context details.

  2. Select exceptions (if any).

  3. Select actions.

  4. View the details of the new policy and confirm.