Provision a service account for Dropbox to allow Cloud App Security to scan files stored in Dropbox. Cloud App Security uses the service account to run advanced threat protection and data loss prevention scanning on files in Dropbox.
The steps outlined below detail how to provision a service account for Dropbox from Dashboard.
The Provision Service Account for Dropbox screen appears.
The Dropbox logon screen appears.
The Dropbox authorization screen appears.
Cloud App Security then synchronizes your Dropbox user and group information, including the user ID, user name, user email address, group ID, and group name. The time required depends on how many users and groups you have in Dropbox.
Cloud App Security generates a quarantine folder (trendmicro_cas_quarantine__dont_change_or_delete) and a temporary folder (trendmicro_cas_temp__dont_change_or_delete) in the Dropbox administrator's root directory. The quarantine folder can be accessed only by the administrator, while the temporary folder can be edited by all users.
Cloud App Security renames the files in the quarantine folder. Each file is prefixed with RANDOM_UUID, which is a unique string randomly generated by Cloud App Security. For example, some_file.doc will be renamed ecdd6cc3-58d4-42a4-831a-e39bcbc1c8d5_some_file.doc.
The temporary folder stores quarantined files before they are moved to the quarantine folder and restored files before they are moved back to their original locations.
If the message "Dropbox protected." appears on the Notifications screen, the provisioning is successful.
To avoid unnecessary notifications, all users must exclude the temporary folder (trendmicro_cas_temp__dont_change_or_delete) from their synchronization list. Perform the following steps as a user:
Locate and click the Dropbox tray icon on your desktop.
Click the settings icon and choose Preferences.
Click the Account tab and click Selective Sync.
Clear the check box of the temporary folder (trendmicro_cas_temp__dont_change_or_delete).