Sample Granular Policies
This topic provides sample policies you can use for your reference.
Create a policy that scans all files except structured content like parquet and avro.
{ "name": "Policy to skip structured content", "cloud_provider": "aws" "dlp": { "profileNames": ["Victoria - Health Records Act 2001", "Test custom DLP Profile changed"] }, "enabled": true, "objectConditional": { "blockList": { "extension": { "in": [".parquet", ".avro"] } } }, "maxScanFrequency": "24h", "action": "Alert", "notify": { "interval": "30", "to_users": [ "admin" ], "emails": [ "abc@netskope.com" ], "from_user": "abc@netskope.com" } }
Create a policy that scans all files except from one bucket.
{ "name": "Policy to skip one bucket", "cloud_provider": "aws" "dlp": { "profileNames": ["Victoria - Health Records Act 2001", "Test custom DLP Profile changed"] }, "enabled": true, "objectContainerConditional": { "blockList": { "name": { "in": ["bucket-not-to-be-scanned"] } } }, "maxScanFrequency": "24h", "action": "Alert", "notify": { "interval": "30", "to_users": [ "admin" ], "emails": [ "abc@netskope.com" ], "from_user": "abc@netskope.com" } }
Create a policy that scans a list of buckets and skips structured content files.
{ "name": "Policy to scan a list of buckets sparing structured files", "cloud_provider": "aws" "dlp": { "profileNames": ["Victoria - Health Records Act 2001", "Test custom DLP Profile changed"] }, "enabled": true, "objectContainerConditional": { "allowList": { "name": { "in": ["bucket-1-to-be-scanned", "bucket-2-to-be-scanned"] } } }, "objectConditional": { "blockList": { "extension": { "in": [".parquet", ".avro"] } } }, "maxScanFrequency": "24h", "action": "Alert", "notify": { "interval": "30", "to_users": [ "admin" ], "emails": [ "abc@netskope.com" ], "from_user": "abc@netskope.com" } }