Forum Discussion

Ryan Heffernan's avatar
Ryan Heffernan
Icon for Microsoft rankMicrosoft
Mar 12, 2019

MCAS Webinar Q&A

Many people have registered for our webinar (https://aka.ms/MCASWebinar). We're thrilled to see such interest, but it also means we'll likely get a large volume of questions on the call, and it may n...
Cloud App Security
joshpuse's avatar
joshpuse
Copper Contributor
Apr 12, 2019

Ryan Heffernan Yoann_David_Mallet When talking about App Connectors and CA App Control, can you be alerted to anomalous activity through the CA App control or do you have to setup both an API connector and CA App control for an app? This is if you want to be alerted and also use the App Control functionality of real time control, will setting up just the App control be enough, or need to put the app in both "connected app" tabs?

Yoann_David_Mallet's avatar
Yoann_David_Mallet
Icon for Microsoft rankMicrosoft
Apr 12, 2019

Hi joshpuse 

When using MCAS for threat detection, best is to use the API connector, when one is avaialble. You will have some level of detection using Conditional Access App Control only, but it is not to the level of what you get using the API connector.

 

Therefore, if there is a connector available, I suggest you leverage it (note that anything you do by default when you connect a new app will be read only: MCAS will not perform any user impacting task without an action from the admin).

 

hope this helps!

yoann  

Resources