Creating a DSPM data source

1. Go to Yandex Security Deck.

2. In the left-hand panel, select Data Security Posture Management and go to the Data sources tab.

3. In the top-right corner, click Create source.

4. Add the resources you want to scan to the data source:

   • To add individual buckets, click Select bucket and select one or more buckets from one or more of your available folders.

     If required, use filters by access settings (Limited or Public) and by bucket name.

   • To add clouds or folders to your data source, click Select cloud or folder and select all or some of the clouds and/or folders available to you.

     All buckets in the selected clouds and/or folders will be added to the data source. In this case, DSPM will scan both the buckets that already exist in these clouds and folders and any other buckets added to them by the time the scan is run.

5. Under Include in selection, specify one or more scan scopes:

   • All files: To scan all files saved in the buckets.

   • DOC/TXT: To scan .doc, .docx, and .txt text files.

   • XLS/CSV: To scan .xls, .xlsx, and .csv spreadsheet files.

   • PPT: To scan .ppt and .pptx presentation files.

   • PDF: To scan .pdf document files.

   • HTML/XML: To scan .html and .xml files.

   • Images: To scan .jpg, .jpeg, .png, .gif, .webp, and .svg image files.

   • Custom filter: To scan all files whose names do or do not match the specified patterns:

     • File name contains: To scan files whose names match the specified pattern.
     • File name does not contain: To ignore files whose names match the specified pattern.

     Specify the patterns using the RE2 regular expression syntax. You can specify patterns in both fields, in which case the scan will use the AND logic to select files.

   You can select multiple filters at the same time; the system will use the OR logic to apply them.

6. If you want to add resources with different scan scope selection settings to the same data source, click Add resource group and repeat steps 4 and 5 in the section that appears.

   You can add any number of resource groups to a single data source for scanning.

7. Under Information about source, indicate the data source name you will use to select this source when creating a scan. Follow these naming requirements:

   • It must be from 2 to 63 characters long.
   • It can only contain lowercase Latin letters, numbers, and hyphens.
   • It must start with a letter and cannot end with a hyphen.

   Click on the right side of the Name field to automatically generate a name for the data source you are creating.

8. Click Create source.

As a result, the new source will appear in the list of data sources. Now you can select this data source when creating a scan.

1. Go to Yandex Security Deck.

2. In the left-hand panel, select Data Security Posture Management and go to the Data sources tab.

3. In the top-right corner, click Create source.

4. Select Yandex 360.

5. Click Configure connection and configure integration with the Yandex 360 organization:

   1. Specify the Organization 360 ID.

      You can look up the ID in your company profile in the organization administrator account.

   2. Enter the OAuth token.

   3. Optionally, to provide access to custom resources, e.g., to scan custom disks, create a service application and specify the following properties:

      • ClientID
      • Client secret

      Note

      This feature is not available for the Yandex 360 Minimum plan.

   4. Click Save.

6. Add the resources you want to scan to the data source:

   • To add shared disks to your organization, under Organization resources, click Add resources. Select or deselect disks as appropriate in one or more folders.
   • To add custom disks to the data source, in the Custom resources section, click Add resources. Select or deselect custom disks as appropriate.
   • To add all available disks to the data source, click All disks under Shared resources or Custom resources. The scan will include not only the disks existing in the selected organization when the data source is created, but also disks added later (by the time of the scan).

7. Under Include in selection, specify one or more scan scopes:

   • All files: To scan all files saved in the buckets.

   • DOC/TXT: To scan .doc, .docx, and .txt text files.

   • XLS/CSV: To scan .xls, .xlsx, and .csv spreadsheet files.

   • PPT: To scan .ppt and .pptx presentation files.

   • PDF: To scan .pdf document files.

   • HTML/XML: To scan .html and .xml files.

   • Images: To scan .jpg, .jpeg, .png, .gif, .webp, and .svg image files.

   • Custom filter: To scan all files whose names do or do not match the specified patterns:

     • File name contains: To scan files whose names match the specified pattern.
     • File name does not contain: To ignore files whose names match the specified pattern.

     Specify the patterns using the RE2 regular expression syntax. You can specify patterns in both fields, in which case the scan will use the AND logic to select files.

   You can select multiple filters at the same time; the system will use the OR logic to apply them.

8. If you want to add resources with different scan scope selection settings to the same data source, click Add resources and repeat steps 6 and 7 in the section that appears.

   You can add any number of resource groups to a single data source for scanning.

9. Under Information about source, indicate the data source name you will use to select this source when creating a scan. Follow these naming requirements:

   • It must be from 2 to 63 characters long.
   • It can only contain lowercase Latin letters, numbers, and hyphens.
   • It must start with a letter and cannot end with a hyphen.

   Click on the right side of the Name field to automatically generate a name for the data source you are creating.

10. Click Create source.

As a result, the new source will appear in the list of data sources. Now you can select this data source when creating a scan.