Overview
This guide outlines how to integrate Dropbox with Grip Security, enabling Grip Security to assess key security configurations related to access control, data loss prevention, and other security aspects within your Dropbox environment.
Prerequisites
You need to have a “Dropbox developer” access
Create a new SSPM app in Dropbox.
From Dropbox >> My apps, click on “Create App” (1) or go directly to the “Create a new app...” window (2) using this link.
Select - Scoped access (3)
Select - Full Dropbox (4)
Give your app a name (5) and click ‘Create app’.
Under the “Permissions” tab, scroll down and select the following scopes:
In the “Team Data” section, select “
team_data_member”(6)In the “Members” section, select “
members_read” (7)In the “Sessions” section, select “
events.read” (8)Click Submit
Under the “Settings” tab, copy the API key and App secret (9)
In the Redirect URIs field (10), enter your Grip domain name after the “https://.”
https://{client_domain_in_grip}.integrations.grip.security/oauth/callback
For example, in this URL,https://acme.dep.grip.security/,the {client_domain_in_grip} will be, acme,
Click “Add.”
Connect Dropbox to Grip SSPM
From Grip platform, go to Posture >> Click on Add Tenant (1) >> Dropbox (2)
In the Add New Dropbox Tenant window (3), enter the Dropbox tenant Display name, along with the Client Id and Client Secret you copied in step 9.
Click Continue.
The “Connect Dropbox” window (4) indicates that to complete the integration, you need to sign in to Dropbox with your username and password or send a URL to the Dropbox admin.
If you don't have the necessary permissions, please copy the link and share it with the Dropbox admin.
Once the admin approves it, the tenant will be connected.
Note that the link expires after 1 hour.If you have the admin's username and password, log in to Dropbox (5).
Once connected, the Tenant will be added to the “Connected Tenants” list. There, you can view and filter your policy statuses, assess your security posture, and address any issues.
