Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Getting Started

  1. Last updated
  2. Save as PDF
Limited Availability: Tag Configuration is a Limited Availability feature. To classify and manage traffic and content across Sanctioned, Shadow, and Web services using tags, contact Skyhigh Support

Tags are labels or filters to classify and manage traffic and content across Sanctioned, Shadow, and Web services. Tags serve as metadata labels that help organize logs according to various security requirements, ensuring that relevant data is easily identifiable and actionable. Use tags to define data jurisdictions to enforce access restrictions for Skyhigh CASB users. Additionally, you can use tags to configure SWG Cloud DLP policies. This approach enables SOC teams to efficiently manage, apply policies, and analyze data at scale.

Apply tags to categorize the logs by: 

  • Geography. Distinguish logs from users in different geographies to enforce regional compliance rules (for example, GDPR for European users).
  • Active Directory Attributes. Categorize logs by department (e.g., Engineering, HR) to apply appropriate web access policies. Within the Data Jurisdiction, you can assign tags with Directory Service attributes. 
  • Security Status. Label logs linked to malware activity or policy violations for quicker threat response by building policy enforcement around it.
  • Access Control. Create the Shadow IT Data Jurisdiction based on the tags and apply them to allow user access controls on the Users Management page.
  • Policy Enforcement. Integrate tags directly into the Web Policy Builder to create precise access rules and restrictions.
  • Enhanced Analytics. Leverage tagging into analytics to provide deep insights into security incidents, user behavior, and application usage. Organizations can use tags to generate compliance reports (for example, GDPR, HIPAA) and track data movement based on jurisdictional requirements.

Tag Configuration

You can perform the following actions using Tag Configuration (found under Settings > Infrastructure > Tag Configuration):

  1. Create and edit the tags.
  2. Define Data Jurisdiction to the required tags and apply user control on the User Management page.
  3. Apply Web Policy to the created tags.
  4. View the users and services associated with tags using the Tag Type filter on the Users and Services page.
  5. On the Users and Services page, you can Create a report filtered by the selected tags.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    1. Topic ID 814