Forum Discussion
Ryan Heffernan
Microsoft
MicrosoftMCAS Webinar Q&A
Many people have registered for our webinar (https://aka.ms/MCASWebinar). We're thrilled to see such interest, but it also means we'll likely get a large volume of questions on the call, and it may n...
Q & A:
Thank you and a great session today.
Can I get a follow up from my Question in the Webinar:
I asked:
"when MCAS policy is in place, soy for example we have a policy to only allow users to Read-Only access to BOX, and restrict upload/Download to Box. will this same rule/policy be followed when that user creates a connector in PowerApps or Flow to BOX. so making the connector to BOX only able to Read-only and restrict upload/Download to BOX too with in your PowerApp or Flow
reply from Moderator
No, the reverse proxy covers the users browser session and doesn't affect API connections. Flow has built in DLP capabilities and the ability to block specific connections which might answer the requirement
1st: I don't this my question was under stood correctly, as Setting up connectors to authenticate uses Browser sessions as does PowerApps and Flow. (and if flow data connection cannot be monitored in MCAS then does this not Bypass any security policies that we put in place using MCAS??)
2nd: You stated "Flow has built in DLP capabilities and the ability to block specific connections which might answer the requirement" ..... but the Flow DLP does not provide any kind of connection Block? can you provide details or a contact who can provide more details on this?
to mu understanding the Flow DLP only limits the use of connectors with other connectors, it does not bock a connector from being used or connecting to data.
Ryan HeffernanMicrosoft
Microsoft
TOnymcgra wrote:
Q & A:
Thank you and a great session today.
Can I get a follow up from my Question in the Webinar:
I asked:
"when MCAS policy is in place...
Yoann_David_Mallet: Can you address this?