Cato Networks Knowledge Base

What is SaaS Security API

  • Updated

This article provides an overview and background information about Cato's out-of-band SaaS Security API service to monitor and control traffic to sanctioned SaaS cloud apps.

Note

Note: Please contact SaaSecAPI@catonetworks.com or your official Cato reseller for more information about using the SaaS Security API policy.

Overview of Cato's SaaS Security API

Cato's SaaS Security API provides out-of-band visibility and control for sanctioned cloud apps. Other security features (such as CASB) can only control and monitor traffic that goes over the Cato Cloud. SaaS Security API gives the ability to also monitor and react to traffic from remote users that connect directly to the cloud apps. This applies even when they are not using the SDP Client to send traffic over the Cato Cloud.

SaaS Security API inspects the content of a connection without using TLS Inspection. This is especially benificial to accounts that don't have TLS Inspection enabled. However, even for accounts that are using TLS Inspection, some cloud apps can't be inspected due to issues related to certificate pinning. SaaS Security API compliments Cato's inline CASB and DLP solutions to provide the best security coverage.

Implementing SaaS Security API in Your Account

This is a high-level overview of the steps to implement SaaS Security API.

  1. Create the connectors for the relevant cloud apps.

    For Microsoft apps, it is necessary to create a Microsoft 365 parent connector and then a child connector for each app.

  2. Create (or review) the DLP Content Profile that defines the sensitive data that SaaS Security API is scanning for (see Creating DLP Content Profiles).

  3. Create the rules for the Data Protection policy.

Supported SaaS Security API Connectors

These are the SaaS app connectors that are currently supported for SaaS Security API. Cato is continually improving these apps and adding support for more.

Was this article helpful?

2 out of 2 found this helpful

Comments

0 comments

Please sign in to leave a comment.