Help Center
News
Help Center
News
Popular
Architecture and High-level Information
Scans
How to Use Scans
How to Use Scan Playbooks
What is a Scan Playbook?Working with Scan Playbooks - OverviewHow to Add a New Scan PlaybookHow to View the Playbooks that Act Upon Your Sensitive Data LocationsHow to Create a Scan Playbook that Searches for a Single Data TypeHow to Change a Scan Playbook How to Search for a Scan PlaybookHow to Export a PlaybookHow to Clone a Scan PlaybookHow to Delete a Scan PlaybookHow to Use Logic StatementsHow to Manage Classifications for a PlaybookHow to Manage the Quarantine Path for a Scan PlaybookHow to Bulk Export Scan PlaybooksHow to Add a Script to a PlaybookScan Playbook ExamplesHow to Set Up Purview Labels in a Playbook and ScanHow to Manage Data Types for a Specific Scan PlaybookHow to Manage Classifications for an Individual Scan PlaybookHow to Quarantine SharePoint Site FilesHow to Add a Custom Classification to a Playbook
How to Use Scan Results
Agents
How to Use Dashboards
How to Use Data Asset Inventory
How to Install\Uninstall and Set Up Spirion Sensitive Data Platform
How to Use Logs
How to Manage Users and Roles
Settings and Resources
Additional Resources
Reports
Reporting API
Customer Support Articles

How to Manage the Quarantine Path for a Scan Playbook

For the scan playbooks you create in Spirion Sensitive Data Playbook the Manage Quarantine Paths feature can be used to set a quarantine path specific to a playbook. This quarantine path overrides the global quarantine settings (quarantine file path) located in Settings > Application Settings > Scans Settings, Remedation section.

Multiple quarantine paths separated by a comma can be entered for each environment (Amazon S3, Google Drive, OneDrive, SharePoint, etc.).

Note: UNC paths are supported for workstations and remote file servers, and standard file systems.

User Permissions Required to Use Manage Quarantine Paths

A user must have the following permissions or be a member of a role that has the permssions:

  • Each user has full permissions to the playbooks they create ("owner" rights)
  • Administrator users have full permissions to all playbooks
  • Non-admin users (who did not create the playbook) require the "Manage" permission. This can be set at the User or Role level.
    • User Level:
      • Navigate to Settings > User Management, USERS tab
      • For a specific user select more options at the far right of the table row, select "Manage permssions" from the drop-down menu
      • Select the PLAYBOOKS tab.
      • Under the Playbook Access (User) column for the specific playbook, select "Manage" from the drop-down menu.
      • See "How to Change a User's Playbook Permissions"
      • Below is an example screenshot for a user Role (as with Users, the PLAYBOOKS tab contains the permissions for each scan playbook). Changing the access for a specific playbook here affects all users who are members of this role.

How to Manage the Quarantine Path for a Scan Playbook

To manage the quarantine path for a scan playbook perform the following steps:

  1. From the left side navigation menu navigate select Scans > Scan Playbooks.
  2. The "Scan Playbooks" page opens.
  3. Locate a playbook in the table.
  4. In the far right column for the playbook, click the ellipse menu.

  5. Click Manage Playbook from the sub-menu.

  6. The Playbook view opens.
  7. Click the blue Actions button in the top left corner and select Manage Quarantine Paths

  8. In the Quarantine Paths dialog, select one or more environments, such as Amazon S3, Bitbucket, Box, Dropbox, etc.

  9. Enter the desired quarantine file path for each selected environment.
    Note: Playbook quarantine locations override the global quarantine configuration (found in Settings > Application Settings > Scans Settings > Remediation section).
    Multiple quarantine paths separated by a comma can be entered per environment.
    Note: UNC paths are supported for workstations and remote file servers, and standard file systems.

    Single environment quarantine path
    Single environment quarantine path
    Multiple environment quarantine paths
    Multiple environment quarantine paths
  10. Cloud Targets can also quarantine to cloud locations.
    1. For example, with a Google Cloud Target the following are valid path formats:
      1. C:\Quarantine_Folder - This entry would cause all files on this target to be quarantined to a folder on the agent host system performing the scan.
      2. \\RemoteServer\Quarantine_Folder - This entry would cause all files to be quarantined to a remote folder.
      3. Google Drive: user@account.com/Quarantine_Folder - This entry would cause all files on this cloud provider to be quarantined to a specified Google Drive folder.
        Note: To quarantine files to Microsoft OneDrive, the entire location path must be written in lowercase.
    3. For example, OneDrive paths must be formatted exactly as follows:
      1. Microsoft OneDrive: user@domain.com/quarantinefolder
  12. Click the Confirm button.


Was this article helpful?

Powered by Product Fruits