Google Drive integration

This page includes:

• Google Drive integration
  • About the Google Drive integration
  • About quarantining Google Drive files
  • Prerequisites
  • Configuring Google Drive integration
  • Step 1: Activate the Google Drive integration
  • Step 2: Connecting Google Drive
  • Step 3: Enabling Quarantine
  • What gets scanned
  • Flow chart diagram

Note: Before implementing this channel integration, contact your Customer Success Manager for Perception Point X‑Ray to make sure that this functionality is included in your current Perception Point X‑Ray license.

About the Google Drive integration

Perception Point X‑Ray can be integrated with various products. Your organization can protect itself from malicious files infiltrating the organization through Google Drive. This page explains how to configure Perception Point X‑Ray to integrate with Google Drive. For general information about integrating Perception Point X‑Ray with other products, see Bundles and Channels.

This page describes what must be performed by Perception Point Support and what must be performed by you, the customer - to perform the integration.

After you add Google Drive as a channel, Perception Point X‑Ray will scan all files that are uploaded to Google Drive, and all files in Google Drive that are modified.

About quarantining Google Drive files

By default, each new Perception Point X‑Ray-Google Drive integration is configured to quarantine files. Files will be quarantined when a scan assigns a malicious verdict to a file, or when someone changes the verdict of a scan to malicious. When a file is quarantined:

• The quarantined file is moved to the quarantine folder. The folder path of the quarantine folder is specified in Step 3 of the configuration procedure below.

• The quarantined file it is not accessible to the owner of the file.

• Perception Point X‑Ray may be configured to send an email alert to the owner of the file to inform the owner that the file has been quarantined. For details, see Alerts.

• Perception Point X‑Ray may be configured to send an alert to administrators to inform them about the quarantined file. For details, see Alerts.

• The quarantined file is replaced by a text file in its original location. The replacement "placeholder" text file has the same name as the quarantined file, but has an additional .txt extension. For example, the placeholder file for Document-123.docx would have the name Document-123.docx.txt

  The content of the placeholder text file is similar to:

  Document-123.docx was blocked by Perception Point X‑Ray. Contact your system administrator in order to access this file.

When an administrator releases a quarantined file [by changing its verdict to clean]:

• An email is sent to the owner of the file to inform the owner that the file has been released from quarantine.

• The released file will be accessible to the owner, in the original location of the file.

• The placeholder text file is deleted.

  For details about releasing a file from quarantine, see Changing Verdicts.

Note: To disable quarantine, contact Perception Point Support [support@perception-point.io].

Note: By default, files up to 100 MB are scanned - larger files are not scanned. Contact Perception Point Support [support@perception-point.io] if you want to change this limitation.

Prerequisites

In order to perform the required integration with Perception Point X‑Ray, make sure that you have the following prerequisites:

• Google Workspace - Business Standard edition

• Administrator rights in Google Workspace

• Admin role in Perception Point X‑Ray

Configuring Google Drive integration

Perform the procedure below to integrate Perception Point X‑Ray with Google Drive.

Step 1 - Activating Google Drive

Step 2 - Connecting Google Drive

Step 3 - Enabling quarantine

Step 1: Activate the Google Drive integration

This step connects Google Drive with Perception Point X‑Ray.

In Perception Point X‑Ray

1. In the left navigation menu, select Account > Bundles and Channels.

2. Make sure that a bundle is assigned that includes Google Drive.

3. Under Enabled Channels, locate "Google Drive" and then click "Activate". You'll be redirected to a page with instructions and place to enter an email address:

   

   Keep this page open - you'll return to this page later to complete Step 2.

Step 2: Connecting Google Drive

In Google Workspace

1. Open your Google Workspace domain's Admin Console.

2. Click Security.

3. Click "Access and data control".

4. Click "API controls".

5. Scroll down to the Domain wide delegation section, and then click "Manage Domain Wide Delegation".

   

6. This step depends on whether or not the Google Workspace integration is configured for your organization:

   	Google Workspace integration is NOT configured	Google Workspace integration IS configured
   	Click "Add new" Under Client ID, enter 105845669529204264254 Under "OAuth scopes" add the following 2 scopes: https://www.googleapis.com/auth/drive https://www.googleapis.com/auth/admin.reports.audit.readonly Either enter the two values on a single line, separated by a comma - or enter the two values on separate lines. Click Authorize.	In the API Clients list, locate the Perception Point application. It has a Client ID of 105845669529204264254 Click on the application's "Client ID" or name to view its details. This will open a panel with information about the application and its current scopes. In the details panel, click "Edit" or "Edit Scopes" Under "OAuth scopes" add the following 2 scopes: https://www.googleapis.com/auth/drive https://www.googleapis.com/auth/admin.reports.audit.readonly Either enter the two values on a single line, separated by a comma - or enter the two values on separate lines. Click Save or Authorize.

In Perception Point X‑Ray

1. In Perception Point X‑Ray, in the field with the text "Your Email", enter your admin email address.

   

2. Click Submit.

Step 3: Enabling Quarantine

This step is optional.

If you want to quarantine files that are assigned a malicious scan verdict:

1. Create a designated quarantine folder in Google Drive. Files that are assigned a malicious scan verdict will be quarantined in this designated quarantine folder.

2. After you create the designated folder, send the folder path of the quarantine folder to Perception Point Support [support@perception-point.io].

   You can send the URL of the full path, such as:

   

   - or you can send just the folder hash value, such as:

   

Perception Point Support will perform the required configuration, and let you know when the configuration is complete.

What gets scanned

Perception Point X‑Ray scans the following files:

• Every file that is added by a user to the user's own drive.

• Every file that is added by a user to a shared drive.

• Every file that is uploaded by an administrator.

• Every file that is changed by a user in the user's own drive.
  [Only the first time it is changed in a 24-hour period.]

• Every file that is changed by a user in a shared drive.
  [Only the first time it is changed in a 24-hour period.]

• Every file that is changed by an administrator.
  [Only the first time it is changed in a 24-hour period.]

Note: By default, files up to 100 MB are scanned - larger files are not scanned. Contact Perception Point Support [support@perception-point.io] if you want to change this limitation. Perception Point X‑Ray scans files that are uploaded after the integration is configured. Files that were uploaded before the integration was configured are not scanned.

Flow chart diagram

Hover your cursor over the graphic below to enlarge it

See also: 

• Integrating Channels