Forum Discussion
MicrosoftMCAS Webinar Q&A
Q & A:
Thank you and a great session today.
Can I get a follow up from my Question in the Webinar:
I asked:
reply from Moderator
2nd: You stated "Flow has built in DLP capabilities and the ability to block specific connections which might answer the requirement" ..... but the Flow DLP does not provide any kind of connection Block? can you provide details or a contact who can provide more details on this?
to mu understanding the Flow DLP only limits the use of connectors with other connectors, it does not bock a connector from being used or connecting to data.
Microsoft
2nd: You stated "Flow has built in DLP capabilities and the ability to block specific connections which might answer the requirement" ..... but the Flow DLP does not provide any kind of connection Block? can you provide details or a contact who can provide more details on this?
to mu understanding the Flow DLP only limits the use of connectors with other connectors, it does not bock a connector from being used or connecting to data.
Hi, this is correct.
Sorry for the typo, as answering through the several hundreds of questions during the call I typed connections instead of connectors.
Thank you Sebastien Molendijk for you reply,
Sorry My mistake here I left out one on every important item in my first part, sorry.
If we have SSO set up to 3rd party Services/Apps via Enterprise application in Azure AD, and then have Conditional access set to enforce SSO, then when a connector is set up it would need to Authenticate Via SSO to AAD, would this then not enable MCAS to have control/Monitor capabilities on the connector usage in Flow?
For example if we set up SSO to Dropbox via Azure AD, then set conditional access to enforce this, so the only way any user can get access to Dropbox is if they are provided Access via AAD and use SSO.
Now when using Flow if that user tries to set up a Dropbox connector, at the authentication section at the beginning when creating the connector, will SSO not be enforced, so then authenticating the connector is Via AAD.
My Questions here:
- Will SSO Via AAD using Conditional access, allow us to control the initial set up and authentication to create a connector?
- When a connector is created via SSO to AAD what information/Controls can MCAS give us or what details can it log at initial connector setup
- If MCAS cannot provide any visibility of API traffic/usage to connection from the tenant that use oauth tokenised connections. what can provide a monitoring and control of this traffic in and out of out tenant
- MCAS will not monitor or give any control over any API calls
- Sebastien Molendijk
Thank for the details.
Let me discuss this internally and see what would be possible for this use case.
Sebastien MolendijkAlso after the MCAS webinar today on threat detection, the section on OAuth & and manage Oauth Apps, it outlined triggers and detection that have near real-time activity, where policies could be put in place that could take actions like revoke permissions and suspend user... can I get explained how this works in relation to you first replay where it stated that "MCAS:App Control (reverse proxy) only works for browser based sessions", ....... where today it seems to be presented for OAuth controls and actions/protection
- Sebastien Molendijk
Can we maybe wait for next week App Control session so you have all the details regarding this technology ?
If this is still unclear, I'll be happy to go back to more detailed information.