Integrations
      Back to home
      1. Help center
      2. Integrations

      Integration for Google Storage

      Automate your privacy operations by integrating MineOS with Google Storage

      This integration allows you to:

      • Automate content classification to detect data types stored in your Google Storage.

      Before you start

      • Make sure your MineOS plan supports integrations.
      • Make sure you have access to the Google Workspace admin dashboard.
      • Create an integration user and share all of the Relevant Google Storage buckets with it. The shared buckets will determine the scope of the classification. Any file outside of this group will not be accessible for the Classification search.
        (Required scope: devstorage.read_only )
      • Make sure you have access to set up third-party apps. (Super Admin, Security Admin, Custom Admin Role)

      Setting up

      To first allow connection to the Google Storage integration, follow these steps:

      First, you must allow MineOS SSO Discovery App in your Google Workspace account. To do so, follow these steps:

      1. Login to your Google Workspace Admin dashboard at: https://admin.google.com/
      2. Click Security -> Access and data control -> API Controls
      4. Under "App access control" click "Manage third-party app access"
      5. Click "Configure new app"
      7. Paste the following value and click Search: 
        476692529048-d6el4g4n125gh4ucd2r7voo5k5i2eok6.apps.googleusercontent.com
      8. Select "MineOS Radar".
      9. Choose the OAuth Client ID and click Select.
      10. Select which organization units you want to enable the discovery for and click Continue
        Note: We recommend enabling it to the entire organization to get the highest coverage.
      11. Select Trusted and click continue.
      12.  Review the settings and click Finish.

      For more information see Google's article: Control which third-party & internal apps access Google Workspace data.  

       

      To connect to the Google Storage integration itself , follow these steps:

      1. On the MineOS Portal  left sidebar, click Data Inventory and then Data Sources
      2. Click on Add data source
      3. Add Google Storage from the catalog, then open it from your data sources list
      4. In the Request Handling tab, check the Use source in Content Discovery checkbox and choose the Integration handling style.
      5. Click "Connect" and follow the on-screen instructions for granting the required permissions.
      6. Now add the inputs to control the scan scope:
        1. Project ID - you are required to enter the project id of which you want to scan the relevant buckets
        2. Bucket Regex - * for all buckets, you can add a specific regex to filter specific buckets
      7. Now you can click on Start Scan to start you content discovery.

      Some organizations have a session timeout enabled for Google Cloud scopes. To avoid session timeout for this integration, you need to mark it as a Trusted App, as well as exempt trusted apps from session timeout. Refer to Google's article for help. 

      failing to do so will expire this integration and you will have to reconnect it every time.