Skip to main content

Cloud Access Rules on Zenconsole

Published on:
.
1 min read

Zenarmor® offers a Cloud Access Security Broker (CASB) capability that enables you to establish cloud access regulations inside your policies. CASB improves cloud security by providing precise access control for cloud applications. By enabling meticulous administration of individual application components and implementing precise security regulations, this feature safeguards your firm from illegal information exposure in cloud settings. By using Zenarmor's CASB functionality, you may effectively mitigate the risk of unauthorized sharing that might lead to the compromise of sensitive data or violation of compliance regulations.

Figure 1. Cloud Access Rules in a Policy

note

The Cloud Access Security Broker (CASB) feature is available only for SSE and higher subscriptions.

Zenconsole allows users to create access rules for nine cloud applications and the corresponding cloud actions. It is feasible to prohibit an action from occurring either on an individual level or across the whole platform of a cloud application.

To set the policy-based Cloud Access Security Broker (CASB) capability, you may go to Cloud Access page of a policy on your Zenconsole by following the instructions provided in this guide:

  1. Select a node on Zenconsole.
  2. Click Policies on the left sidebar menu.
  3. Select the policy that you want to configure CASB.
  4. Click on the Cloud Access tab.

You may perform the following task on the Cloud Access page:

  • Searching Applications to Filter
  • Blocking a Cloud Application
  • Blocking a Cloud Action

Here is a video about Zenarmor Cloud Access Security Broker (CASB) feature.

Searching Applications to Filter

There are a total of nine cloud apps and many application actions available on the Cloud Access page. The Search box may be used to locate and retrieve a particular application or an action. To locate an application or action in the list, just enter the application or action name in the search field.

Figure 2. Searching Cloud Application

Blocking a Cloud Application

You may easily block a cloud application entirely on your network by following these steps:

  1. Select a node on Zenconsole.

  2. Click Policies on the left sidebar menu.

  3. Select the policy that you want to configure CASB.

  4. Click on the Cloud Access tab. You will see that all cloud applications are allowed by default.

    Figure 3. Default CASB Rules

  5. Find the cloud application that you want to block.

  6. Click on the toggle bar located in the Status column. This will block the application entirely.

    Figure 4. Blocking Cloud Application

  7. Synchronize the policy via the sync button on the policies list to activate the settings.

Blocking a Cloud Action

You may easily block the action of a specific cloud application on your network by following these steps:

  1. Select a node on Zenconsole.

  2. Click Policies on the left sidebar menu.

  3. Select the policy that you want to configure CASB.

  4. Click on the Cloud Access tab.

  5. Click on the application name for the action that will be blocked. This will list all actions the application has.

  6. Click on the toggle bar located on the right of the action name, in the Status column. You may block as many actions as you need.

    Figure 5. Blocking Cloud Action

  7. Synchronize the policy via the sync button on the policies list to activate the settings.

tip

The "Number of blocked actions" column in the application displays the overall count of actions that have been prevented. As seen in the above diagram, 5 out of 16 activities performed on the Dropbox program are blocked.

Last updated on by Zenarmor