Forum Discussion

PHancke's avatar
PHancke
Brass Contributor
Mar 25, 2020

Additional insight on Gmail use in MCAS

We use Exchange Online for business e-mail, but are seeing high volumes of users and traffic to Gmail on MCAS. What options do we have to get more insights for Gmail use in MCAS? - We do not use Goo...
Cloud Discovery
Boris_Kacevich's avatar
Boris_Kacevich
Former Employee
Mar 30, 2020

Hi PHancke 

 

MCAS is bound to the information provided by MDATP or any other network appliance (SWG, Firewall and etc.).

You are able to monitor the app's usage patterns such as the number of users using the apps, the amount of data being uploaded and downloaded and etc.

By using the Sanctioned/Uns-anctioned tag, you are then able to set automated policy-based alerts to be notified when a certain app's (in this case Gmail) usage patterns violate company regulations. 

 

We are planning to provide visibility into file hashes that are being uploaded to any of the monitored apps and protect sensitive data upload to Risky/Un-sanctioned apps. No ETA yet.

 

More information can be found here:

https://docs.microsoft.com/en-us/cloud-app-security/tutorial-shadow-it

https://docs.microsoft.com/en-us/cloud-app-security/tutorial-flow

 

I suggest taking the AIP/MDATP question in MDATP forums. 

 

Best,

Boris K

 

Resources