Nightfall
HomeLoginDeveloper PlatformContact Us
Search…
Introduction
Why Cloud DLP?
Product Updates
Operationalizing DLP
Informing & Coaching Business Users
Running Historical Scans
Alert Management Guiding Principles
Integrating with Security Tools
Detection Engine
Getting Started
How Detection Works
Detectors
Detection Engine FAQs
Evaluating Detection
Nightfall for Slack
Nightfall for Slack: Demo Video
Getting Started
Alert Management
Remediation Guide
Nightfall for Slack Overview
FAQs
Nightfall for GitHub
Real-Time Scanning
Historical Scanning
Nightfall for GitHub Overview
Radar API Reference
Exporting Reports & Results
Integrating Webhook Endpoints
Integrating with Jira
Remediation Guide
Managed Services
FAQs
NIGHTFALL FOR GOOGLE DRIVE
Getting Started
Policy Configuration
Alerting Options
Alert Management
Nightfall for Google Drive Overview
Remediation Guide
Historical Scanning
Demo Walkthrough Video
Nightfall for Confluence
Getting Started
Real Time Scanning
Alert Management
Remediation Guide
Nightfall for Jira
Nightfall for Jira Overview
Jira Remediation Guide
Getting Started
Account Management
User Administration
Authentication Options
Compliance
SOC 2 Compliance
HIPAA Compliance
PCI Compliance
Resources
FAQs
Login to Nightfall
Developer Platform
Platform Status
Contact Us
Powered By GitBook
Getting Started
Understand the steps required for the installation of Nightfall for Google Drive

Authenticate

To install the Nightfall App for Google Drive, please follow the steps outlined below:
Navigate to the Nightfall Console, and select Google Drive -> Policies. You will see an intro screen and a button to get started. Click ‘Get Started’.
In order to connect the Google account to Nightfall, you must grant Nightfall Google Workspace API access with domain-wide delegation. In order to do this, you must be a Google administrator.
Follow the steps outlined on the page within the G Suite admin console to add the required OAuth scopes to the presented Client ID.
Once complete, please sign in with your Google Account on the bottom of the screen to connect the account.

Setting Up Your First Policy

In the Nightfall Console, navigate to Google Drive -> Policies
Select the option to add a new policy at the top right of the screen.
  • Name the policy
  • Set the scope of the policy The scope of the policy will be the where the monitoring is enforced on Google Drive, with this policy. You can choose to select this scope by Drives, or by Files. By default, All Drives will be selected, but you can unselect this and narrow down the Drives that you would like to be part of the scope. Similarly, you can also exclude certain files in the 'Exclude files' option below the list of drives. Please see this functionality in the screenshot below.
Sample Scope from a Test Drive Account
  • Select the detection rule that you would like to include with this policy. This will need to have been configured beforehand, as detection rules are independent of the policies they are attached with. Learn more about configuring detection rules here.
  • Set the desired permissions to alert upon in the rule.
The options chosen here will be the permissions setting that will trigger an alert.
For example, in the permissions section screenshot below, the options for “Anyone with the link” in the ‘Link Settings’ option, and “External users and groups” in the ‘Shared with’ option have been chosen.
This means that if any file has the shared permission set to ‘Anyone with the link’, an alert will be triggered, and will also be triggered if the file is shared to an ‘external user’ or group. The intention behind this specific policy is to trigger whenever a file is newly shared externally.
Similarly, thought should be put into the desired state of the policy, as to which permission settings are desired to be alerted upon.
Finally, in the Alerting section, select your desired alerting options for Google Drive:
  • Send alerts to a Slack channel
  • Send notifications via email
  • Send alerts to a Webhook endpoint
If these alerting options have yet to be set up, please refer to this article here.
Previous
What is a Secret vs a Violation?
Next
Policy Configuration
Last modified 8mo ago
Copy link
Contents
Authenticate
Setting Up Your First Policy