Skip to main content

Netskope Help

API Data Protection

Note

If you are looking to explore the Next Generation API Data Protection platform, follow the Next Generation API Data Protection Platform documentation.

Use an out-of-band API connection into your sanctioned cloud services to find sensitive content, enforce out-of-band policy controls, and quarantine malware. This deployment option has the advantage of being simple and friction-less to deploy, requiring only a few steps and granting access to the sanctioned app from the Netskope console using OAuth. The other advantage is that the API connection enables inspection of content that already resides in the sanctioned app. This is not possible with a proxy deployment. There are two limitations to API Data Protection. First, visibility and control is out-of-band, so visibility and control are after-the fact versus proactive and real-time. Second, only sanctioned cloud services are supported.

API Data Protection API Connectors

Netskope API Data Protection works by directly connecting to the cloud app using the APIs published by the app, and uses OAuth to gain delegated access to the app.

Netskope's API Data Protection provides a complementary deployment model to provide cloud visibility, policy, and data security services by directly connecting to the cloud service using the APIs published by the cloud services. The API Connector works in conjunction with the Netskope cloud proxy to provide defense-in-depth security services. The API Connector is only available for data security related services such as DLP, Active Encryption, and Active Permissions Management.

HowIntrospectionWorks.png