Skip to main content

Sonar set up

This article explains how to connect Google Drive or Microsoft OneDrive to Sonar, set the required permissions, and customize alerts and notifications.

Updated this week

1️⃣ Connecting Google Drive or Microsoft OneDrive

Sonar can connect directly to your storage tools to analyze shared files:

  • Google Drive (available if Google Workspace is configured in your workspace)

  • Microsoft OneDrive / SharePoint (available if Microsoft AD is configured in your workspace)

👉 To connect an integration:

  1. Go to Sonar Module Settings > Integrations.

  2. Click Configure next to the desired integration.

  3. Follow the Google or Microsoft authentication process.

  4. Approve the required permissions.

Once connected, Sonar will automatically start scanning shared files and folders.

2️⃣ Required Permissions

Sonar needs certain permissions (called “scopes”) to function properly.

These permissions allow it to:

  • read file lists and metadata (name, owner, creation date, location),

  • identify the risk level of shared data,

  • detect internal and external sharing,

  • and, when necessary, revoke access in case of risk.

Google Drive

For Google, there’s no scope limited only to updating permissions. Riot must request the full “write” scope, but it is used exclusively to restrict or revoke access. You can monitor this in your Google Admin console.

⚙️ Google Configuration:

Permissions must be granted via Domain-wide delegation in the Google Workspace Admin Console (not by a single admin user) in order to:

  • avoid issues if the admin leaves the organization,

  • better handle quota limits (rate limits).

Microsoft OneDrive / SharePoint

For Microsoft, Sonar also uses full scopes for performance reasons.

This allows it to apply restriction actions directly and without excessive latency.

👍 Good to know:

  • The permissions granted to Sonar are strictly necessary for the module to function and are standard for any DLP tool.

  • Administrators can revoke these rights at any time from the Google or Microsoft console.

3️⃣ Alert Delay for Public Files

Sonar detects files shared publicly outside your organization.

You can set a delay threshold before receiving an alert to avoid being notified for very temporary shares:

  • 1 hour

  • 1 day

  • 1 week

  • 1 month

  • 1 year

👍 Good to know:

This helps focus alerts only on files that remain exposed over time, reducing noise from short-term shares.

4️⃣ Notifications

To encourage employee accountability, you can enable automatic notifications:

  • Each employee receives alerts only for their own files to review.

  • Administrators have a consolidated view of all files and actions in progress.

  • Notifications are sent by Albert, through each employee’s preferred channel (email, Teams, Slack, or Google Chat).

  • They are sent at most once per week, and contain up to 5 files per notification, maintaining a regular rhythm without overwhelming teams.

Related Articles
Set Up and Modify the Notification Channel
Understanding File Risk Levels and Prioritization
Did this answer your question?