Fortinet black logo

Online Help

Home FortiCASB 24.1.b Online Help
24.1.b
24.1.b
24.1.a
23.4.a
23.3.a
23.2.b
23.2.a
23.1.0
22.4.0
21.4.0
21.2.0
21.1.0
20.4.1
20.4.0
20.3.0
20.2.0
20.1.0
4.2.0
4.1.0
2.1.0

Data Protection Discovery Analytic

Data Protection Discovery Analytic

Introduction

Discovery is located in Data Protection > Discovery. Discovery is an all-in-one analytics where all files from the supported SaaS applications on board are analyzed and categorized with emphasis on files and users who have access to the files that poses the most security vulnerability.

FortiCASB classifies data resides in cloud accounts as Data at Rest or Traffic Data.

Data At Rest is data uploaded onto the cloud application before the cloud account is added to FortiCASB.

Traffic Data is any data uploaded after the cloud account is added to FortiCASB and security monitoring has been initiated.

When the cloud account is on board in FortiCASB, the files are scanned individually when there is an access attempt. After the data scan is completed, depending on the Data Analysis policies enabled, FortiCASB will classify the files as either sensitive data or non-sensitive files.

Discovery currently only supports the following cloud application platforms:

Salesforce Office 365, Box, Dropbox, Google Workspace, Egnyte, Github, and Webex.

All Files Overview

Malware are malicious softwares or files that can steal sensitive or valuable information from the cloud accounts.

Click on Malware to review and remove malwares from cloud accounts before any data is compromised.

Sensitive Files are files that with DLP(Data Loss Prevention) data that contains personal information identified by Data Analysis policies.

Click on the Sensitive files to show all files that have sensitive data to protect the personal identity information from being exposed to unauthorized personnel.

Shared Files are files shared by the file creators to other users, groups, or any collaborators.

Click on Shared Files to review the cloud application files shared.

High Risk File Owner are users that are considered as high risk users who share sensitive files with other users.

Exposure Summary categorizes users with access to files into different categorizes. Viewer, Editor, Commenter, and Others are normalized share types of all cloud platforms. For more details on normalized share types, see Appendix B - Normalized Share Types. Click on each normalized share type to show only files shared by the specific type of user.

Top 10 File-Sharing Users are the top 10 file sharing users across all on board cloud applications.

Top 10 Users/Groups with Access to Shared Files are the top 10 users that are grant the most number of file access.

Sensitive Files Exposure Overview

Sensitive Files Exposure Overview is an intuitive graphical distribution which reveals the number of Sensitive files shared per cloud application.

Hover the mouse over different colors to reveal the number of sensitive files shared from the targeted cloud application.

External Collaboration

External Collaboration Summary reveals the total number of sensitive and non-sensitive files shared to external users/group and external domains.

External Collaboration summary only supports Office 365, Dropbox, Google Workspace, and Box.

Top 10 External Domains Shared To outlines the top 10 external domains which the cloud application files are being shared with.

Top 10 External Users/Group Shared To depicts the top 10 external users/groups have access to the cloud application files.

Previous
Next

Data Protection Discovery Analytic

Introduction

Discovery is located in Data Protection > Discovery. Discovery is an all-in-one analytics where all files from the supported SaaS applications on board are analyzed and categorized with emphasis on files and users who have access to the files that poses the most security vulnerability.

FortiCASB classifies data resides in cloud accounts as Data at Rest or Traffic Data.

Data At Rest is data uploaded onto the cloud application before the cloud account is added to FortiCASB.

Traffic Data is any data uploaded after the cloud account is added to FortiCASB and security monitoring has been initiated.

When the cloud account is on board in FortiCASB, the files are scanned individually when there is an access attempt. After the data scan is completed, depending on the Data Analysis policies enabled, FortiCASB will classify the files as either sensitive data or non-sensitive files.

Discovery currently only supports the following cloud application platforms:

Salesforce Office 365, Box, Dropbox, Google Workspace, Egnyte, Github, and Webex.

All Files Overview

Malware are malicious softwares or files that can steal sensitive or valuable information from the cloud accounts.

Click on Malware to review and remove malwares from cloud accounts before any data is compromised.

Sensitive Files are files that with DLP(Data Loss Prevention) data that contains personal information identified by Data Analysis policies.

Click on the Sensitive files to show all files that have sensitive data to protect the personal identity information from being exposed to unauthorized personnel.

Shared Files are files shared by the file creators to other users, groups, or any collaborators.

Click on Shared Files to review the cloud application files shared.

High Risk File Owner are users that are considered as high risk users who share sensitive files with other users.

Exposure Summary categorizes users with access to files into different categorizes. Viewer, Editor, Commenter, and Others are normalized share types of all cloud platforms. For more details on normalized share types, see Appendix B - Normalized Share Types. Click on each normalized share type to show only files shared by the specific type of user.

Top 10 File-Sharing Users are the top 10 file sharing users across all on board cloud applications.

Top 10 Users/Groups with Access to Shared Files are the top 10 users that are grant the most number of file access.

Sensitive Files Exposure Overview

Sensitive Files Exposure Overview is an intuitive graphical distribution which reveals the number of Sensitive files shared per cloud application.

Hover the mouse over different colors to reveal the number of sensitive files shared from the targeted cloud application.

External Collaboration

External Collaboration Summary reveals the total number of sensitive and non-sensitive files shared to external users/group and external domains.

External Collaboration summary only supports Office 365, Dropbox, Google Workspace, and Box.

Top 10 External Domains Shared To outlines the top 10 external domains which the cloud application files are being shared with.

Top 10 External Users/Group Shared To depicts the top 10 external users/groups have access to the cloud application files.

Previous
Next