Click the Exhibit button.
A user is connected to a SaaS application through Netskope's Next Gen SWG with SSL inspection enabled. In this scenario, what information is available in SkopeIT? (Choose three.)
In the scenario where a user is connected to a SaaS application through Netskope's Next Gen Secure Web Gateway (SWG) with SSL inspection enabled, the following information is available in SkopeIT:
User activity, CCL: SkopeIT provides detailed logs of user activities, including actions taken within SaaS applications, and uses the Cloud Confidence Level (CCL) to rate the trustworthiness of cloud applications.
Account instance, category: It logs information about the specific instance of the account being accessed and categorizes the type of service or application in use, which helps in identifying the context of the user's activities.
Username, source location: The username of the user accessing the SaaS application and their source location (such as IP address or geographic location) are logged for audit and compliance purposes.
Netskope documentation on SSL inspection and SkopeIT logging.
Detailed configuration guides on using Next Gen SWG and the types of data collected by SkopeIT.
A Netskope administrator wants to create a policy to quarantine files based on sensitive content.
In this scenario, which variable must be included in the policy to achieve this goal?
To create a policy to quarantine files based on sensitive content in Netskope, you need to include the DLP Profile variable. Here's a detailed explanation of the steps involved:
Access Netskope Admin Console: First, log in to your Netskope admin console.
Navigate to Policies: Go to the Policies section where you can create and manage different types of policies.
Create a New Policy: Click on the option to create a new policy. Select the type of policy you want to create. In this case, it will be a Data Loss Prevention (DLP) policy.
Define Policy Criteria: Define the criteria for your policy. This includes specifying the conditions under which files should be quarantined. You will need to include sensitive content detection as part of the criteria.
Include DLP Profile: The most crucial step is to include a DLP Profile in your policy. The DLP Profile will define the sensitive content that the policy will monitor for. Netskope provides various predefined DLP profiles that you can use, or you can create custom DLP profiles based on your organization's needs.
Set Action to Quarantine: Specify the action to be taken when the policy criteria are met. In this case, you want to quarantine the files. Select the 'Quarantine' action from the available options.
Save and Apply Policy: Once you have configured the policy with the DLP profile and action, save the policy and apply it to the relevant users, groups, or organizational units.
Netskope Knowledge Portal: Using DLP Profiles and Policies.
Click the Exhibit button.
A user has the Netskope Client enabled with the correct steering configuration applied. The exhibit shows an inline policy that has a predefined webmail category blocked. However the user is still able to access Yahoo mail.
Which statement is correct in this scenario?
The given exhibit shows an inline policy blocking the predefined webmail category via an explicit proxy. However, the user can still access Yahoo Mail, indicating that Yahoo Mail is not included in the webmail category when using an explicit proxy.
Policy Configuration:
The policy is set to block access to the webmail category through an explicit proxy.
The action for this policy is 'Block'.
Understanding the Webmail Category:
Netskope's predefined categories may not always cover all services under a category, especially when it comes to specific configurations like explicit proxy.
The webmail category in the policy might not have included Yahoo Mail when using explicit proxy configurations.
Checking the Category Definitions:
It is important to verify what URLs or services are included under the 'webmail' category in the Netskope administration console.
Administrators can check the category definitions and manually add Yahoo Mail if it's not included by default.
REST API v2 Overview - Netskope Knowledge Portal
Using the REST API v2 dataexport Iterator Endpoints - Netskope Knowledge Portal
Using the REST API v2 UCI Impact Endpoints - Netskope Knowledge Portal
netskopesdk * PyPI
All users are going through Netskope's Next Gen SWG. Your CISO requests a monthly report of all users who are accessing cloud applications with a "Low" or a "Poor" CCL, where the activity is either "Edit" or "Upload".
Using the Advanced Analytics interface, which two statements describe which actions must be performed in this scenario? (Choose two.)
Create the Report in Advanced Analytics:
Data Collection:
Use the 'Page Events' data collection, which captures detailed user activities on web pages, including edits and uploads.
Filters:
Apply filters to include only the activities 'Edit' and 'Upload'.
Add another filter for the Cloud Confidence Level (CCL) to include only those with 'Low' or 'Poor' ratings.
This ensures the report focuses on the specified user activities within cloud applications that have lower security ratings.
Steps:
Navigate to Advanced Analytics > Reports.
Create a new report and select 'Page Events' as the data collection source.
Apply the necessary filters for activities and CCL values.
Schedule the Report:
Monthly Recurrence:
Set the report to run on a monthly schedule to ensure regular updates.
Configure the report to be sent via email with a PDF attachment.
Steps:
In the report scheduling options, set the recurrence to monthly.
Specify the email recipients, ensuring the CISO receives the report.
Select PDF as the report format.
Reference:
For more details on creating and scheduling reports, refer to the Netskope documentation on Advanced Analytics and report generation.
A customer changes CCI scoring from the default objective score to another score. In this scenario, what would be a valid reason for making this change?
