Event details
122 Comments
- At the moment our users are able have incoming web hooks to their channels. But of course that was a small surprise when those hooks are reachable from outside our Tenant even we do have tenant restrictions. What possibilities we do have for monitoring the web hooks? Also does this web hook bypass Data Leaking Protection? DLP is important as you are able to setup also an outgoing web hooks.
That´s a great question. Webhooks can be one of the ways data will go outside of the organization. DLP is an idea, also Defender for Cloud Apps and Microsoft Sentinel, I try find a way between the communication.
More over I can recommend this:
Microsoft Graph API for Teams DLPData loss prevention (DLP) capabilities are widely used in Microsoft Teams particularly as organizations have shifted to remote work. Earlier this year we announced the public preview of the Microsoft Graph Change Notification API for messages in Teams. This API enables developers to build apps that can listen to Microsoft Teams messages in near-real time and then implement DLP scenarios for both customers and partners. Additionally, Microsoft Graph Patch API lets you apply DLP actions to Teams messages.
These two APIs form the Microsoft Graph API for Teams DLP. You can get started by trying out the sample app. For more information about Microsoft Teams messaging webhooks, see the documentation.
For the licensing requirements for Teams DLP, see Microsoft 365 licensing guidance for security & compliance.
https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-extensibility?view=o365-worldwidePlease use also the Feedback Portal aka.ms/TeamsFeedback .
- My team is driving the adoption of MS Teams across our organisation. Currently, only a handful of Teams Apps are activated (all of which are Microsoft ones). I want more to be activated but the 365 Admins within IT are very risk-averse to any third party applications of any nature with whom we don't have a contract with. So e.g. the Teams YouTube app has been turned away because of fear that YouTube will be able to access "sensitive" information about the members of Teams the app is added to. The small print on every Teams App is pretty generic, how can I reassure my IT department that third-party apps are safe to activate?
- Hi Mary. Microsoft run a compliance program to make sure third-party apps have been vetted. Here's the third-party certification program. https://docs.microsoft.com/en-us/microsoft-365-app-certification/overview The best way to test and enable is to publish apps to a small group of people using policies. Evaluate an app. Run your own testing to confirm it fits the need.
- About document management functionality: for projects, for instance, we need more advanced document management than just putting files in folders. When will we get the option to enter and edit metadata in Teams? And view the version history? Now we need to direct our users to the associated SharePoint site, where we do have that functionality. But that does undermine the story of Teams as the place to be for all of this...
- Hi Frederique, I would see the session at Ignite on OneDrive - on demand. It mentions that metadata is coming to Teams https://myignite.microsoft.com/sessions/cd5f4fad-35bb-46b9-b656-659b9a8cc2b8?source=sessions Hope that helps and answers your question Best, Chris
- Great question Frédérique. I'm waiting on this too. It's great to be able to add columns via the SharePoint site. But I'd like to edit the data directly from Teams too. Also consider showing people how to add metadata directly from the app - e.g. Word File Info.
- About provisioning: I understand we can now apply sensitivity labels to Teams and all underlying channels and SharePoint sites. But can we also set these labels during provisioning? If someone requests a sensitive Team, we want the labels to be applied automatically.
- Hi Frederique, You can set sensitivity labels when creating the team, or change it after it's been created. But to have it auto provision would mean something like applying it to a Teams template. I don't think anything is on the roadmap - I would raise a uservoice here: https://feedbackportal.microsoft.com/ Hope that answers your question Best, Chris
- Thanks Frédérique. This is great feedback. Are you requesting this ability in Teams admin center? Or are you requesting that sensitivity labels be auto-assigned to teams created by end-users? Pls clarify.
- We are hoping to create & provision Teams via templates. If the end-user request a sensitive type of Team, e.g. a finance Team, we'd like the sensitivity label to be set automatically.
- About provisioning: Can we (soon) provision a fully configured Team, including its channels, the tabs in all channels, its Power Automate workflows…. And: when?
- Thanks for the feedback, Frédérique. We do not have timelines to share with you at this time. We will take this feature request to the engineering team for prioritization.
