You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/cloudflare-one/applications/casb/casb-integrations/aws-s3.mdx
+30Lines changed: 30 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -28,6 +28,36 @@ These permissions follow the principle of least privilege to ensure that only th
28
28
29
29
## Compute account
30
30
31
+
{/* <!-- Is 'AWS compute' capitalized? --> */}
32
+
You can connect an AWS compute account to your CASB integration to perform [Data Loss Prevention](/cloudflare-one/policies/data-loss-prevention/) scans within your S3 bucket and avoid data egress. CASB will scan any objects that exist in the bucket at the time of configuration.
33
+
34
+
### Add a compute account
35
+
36
+
To connect a compute account to your AWS integration:
37
+
38
+
1. In [Zero Trust](https://one.dash.cloudflare.com), go to **CASB** > **Integrations**.
39
+
2. Find and select your AWS integration.
40
+
3. Select **Open connection instructions**.
41
+
4. Follow the instructions provided to connect a new compute account.
42
+
5. Select **Refresh**.
43
+
44
+
You can only connect one computer account to an integration. To remove a compute account, select **Manage compute accounts**.
45
+
46
+
### Configure compute account scanning
47
+
48
+
Once your AWS compute account has successfully connected to your CASB integration, you can configure where and how to scan for sensitive data:
49
+
50
+
1. In [Zero Trust](https://one.dash.cloudflare.com), go to **CASB** > **Integrations**.
51
+
2. Find and select your AWS integration.
52
+
3. Select **Create new configuration**.
53
+
4. In **Resources**, choose the buckets you want to scan. Select **Continue**.
54
+
5. Choose the file types, sampling percentage, and [DLP profiles](/cloudflare-one/policies/data-loss-prevention/dlp-profiles/) to scan for.
55
+
6. (Optional) Configure additional settings, such as the limit of API calls over time for CASB to adhere to.
56
+
7. Select **Continue**.
57
+
8. Review the details of the scan, then select **Start scan**.
58
+
59
+
CASB will take up to an hour to begin scanning. To view the scan results, go to **CASB** > **Content** > **Cloud**. For more information, refer to [Content findings](/cloudflare-one/applications/casb/manage-findings/#content-findings).
0 commit comments