In a modern workplace where the average enterprise is using over 1,500 different cloud apps, and more than 80 gigabytes of data is being uploaded monthly to risky apps from business endpoint devices,...
Updated Nov 02, 2021
Version 15.0
Blog Post
4 MIN READ
Block Access to Unsanctioned Apps with Microsoft Defender ATP & Cloud App Security
Greate article 
. Unfortunatly i'm having mixed success with this 
.
Running: Office E3 licenses, on prem domain joined Windows 10 - 2004 (19041.113) and Windows 10 - 1909 (18363.693) Machines are not Intune-managed.
App in question: Discordapp.com (Action in Cloud App Security: Unsanctioned-tag)
Cloud App Security and Microsoft Defender Security Center are integrated, and data flow between the two.
All things turned on under "Advanced features" in Microsoft Defender Security Center.
PowerShell: EnableNetworkProtection set to Enabled (1/Block mode)
Using Microsoft Edge (80.0.2361.66) visting discordapp.com gets the blocked message with Microsoft Defender SmartScreen.
Using any other browser, or running app on one of the two test computeres, things fly past Microsoft Defender.
Any thoughts on what I'm missing (or misunderstanding)?
Bonus info:
Looked into the follow page, setting iTunes as unsanctioned. Gets blocked by Edge browser, but no problem running the app on machines or visting the itunes.apple.com via latest Chrome or Firefox.
https://www.vansurksum.com/2020/01/17/blocking-access-to-cloud-apps-by-integrating-microsoft-cloud-app-security-with-microsoft-defender-advanced-threat-protection/