Fortinet black logo

Online Help

Home FortiCASB 24.1.b Online Help
24.1.b
24.1.b
24.1.a
23.4.a
23.3.a
23.2.b
23.2.a
23.1.0
22.4.0
21.4.0
21.2.0
21.1.0
20.4.1
20.4.0
20.3.0
20.2.0
20.1.0
4.2.0
4.1.0
2.1.0

Google Cloud Storage

Google Cloud Storage

FortiCASB offers an API-based approach, pulling data directly from Google Cloud Storage via RESTful API. Then FortiCASB portal accesses the data collected through API queries with OAuth2.0 authentication. Subsequently, FortiCASB combines these data to monitor and track Google Cloud Storage user activities, conducts DLP Data Analysis for files stored on Google Cloud Storage.

Prerequisites

To use FortiCASB with Google Cloud Platform, you must have a Google Workspace account, Service Account, and the JSON private key associated with the service account. The service account must have "Google Workspace Domain-wide Delegation" enabled and Project Owner/Organization Administrator roles for monitoring.

Steps to Add Google Cloud Account

  1. Configure Google Workspace Account
  2. Configure OAuth Consent Screen
  3. Create Service Account
  4. Grant Service Account API Access
  5. Grant Service Account Owner and Organization Administrator Role
  6. Enable required APIs
  7. Enable activity and alert monitoring
  8. Add Google Cloud Storage Account

Your Google Workspace account can be either an existing account or a new account. If you have just created a new account, you must wait for at least 24 hours for the account to take effect before granting it access to FortiCASB. The Google Workspace account which you connect from with FortiCASB must have the Super Admin role.

Previous
Next

Google Cloud Storage

FortiCASB offers an API-based approach, pulling data directly from Google Cloud Storage via RESTful API. Then FortiCASB portal accesses the data collected through API queries with OAuth2.0 authentication. Subsequently, FortiCASB combines these data to monitor and track Google Cloud Storage user activities, conducts DLP Data Analysis for files stored on Google Cloud Storage.

Prerequisites

To use FortiCASB with Google Cloud Platform, you must have a Google Workspace account, Service Account, and the JSON private key associated with the service account. The service account must have "Google Workspace Domain-wide Delegation" enabled and Project Owner/Organization Administrator roles for monitoring.

Steps to Add Google Cloud Account

  1. Configure Google Workspace Account
  2. Configure OAuth Consent Screen
  3. Create Service Account
  4. Grant Service Account API Access
  5. Grant Service Account Owner and Organization Administrator Role
  6. Enable required APIs
  7. Enable activity and alert monitoring
  8. Add Google Cloud Storage Account

Your Google Workspace account can be either an existing account or a new account. If you have just created a new account, you must wait for at least 24 hours for the account to take effect before granting it access to FortiCASB. The Google Workspace account which you connect from with FortiCASB must have the Super Admin role.

Previous
Next