Home

Microsoft Cloud App Security

30 Conversations

Latest Activity

Custom List Message Item

There seems to be two Cloud Access Discovery products that have two different "discovery" methods.

One seems to be released in late 2015 and seems to get data collection by deploying agents to windows clients. A newer discovery tool seems to collect data

... Read More
123 Views
5 Replies

Hello

 

This page explains the difference very well and should help you on your way.

 

https://docs.microsoft.com/en-us/cloud-app-security/editions-cloud-app-security-aad

... Read More

Hi Neil,

 

Thanks for writing in. Sorry about the confusion around the guidance on how to move to the new and enhanced experience for Azure Active Directory Cloud App Dis

... Read More
Best Response confirmed by Neil Goldstein (Occasional Contributor)

We need a way to search for files based on a custom sharepoint property within Cloud App Security? We have a custom property called "classification" created in SharePoint.

 

We would like to use Cloud App Security to identify the files based on the custom

... Read More
27 Views
1 Reply

in the meantime... did you try creating labels, auto-applying them based on your classification values, , and then use CAS to protect with AIP?

 

https://support.office.com/en-us/article/Overview-of-labels-af398293-c69d-465e-a249-d74561552d30?ui=en-US&rs=en-US&ad=US

... Read More

I would like to see improvement on the AzureAD data going to Cloud App Security. One example is the need to include risky sign in event information in Cloud App Security. For example, "users with leaked credentials" or "Sign-ins from infected devices" We

... Read More
25 Views
0 Reply

At Microsoft Ignite 2017, we shared the upcoming new integration between Azure Information Protection and Microsoft Cloud App Security for providing enhanced data protection in the cloud apps and we received very positive feedback from our customers and p

... Read More
204 Views
0 Reply

I am trying to relate the logs I see in the firewall with the cloud access security logs

Is It possible to see the exact times when the user is supposed to have accessed the relevant URLs ?

As I cannot see some of the connections reported on the CAS on my

... Read More
67 Views
2 Replies

Hi Steve,

 

In the Cloud Discovery pages you can only see the day and not the exact time, but we'll gladly help you with the investigation. 

Can you please open a support

... Read More

Hello Experts,

 

Is it possible to change the datacenter that Cloud App Security collects data to?  For example, from the US to EMEA or the UK?  And if so, what's the process?

 

Thanks

72 Views
4 Replies

Hi Matt,

 

EU customers that their tenant was created in the US datacenter can migrate to the EU datacenter.

The process is very simple. All they need to do is open a sup

... Read More

Currently, the file policies that are available under CAS relate to pre built data types within the product. We have some custom sensitive data types that have been setup in our O365 Environment and would like to include those as part of the CAS File Poli

... Read More
57 Views
1 Reply

Hi Chandrika,

Using O365 custom sensitive types as part of MCAS policies is in our plans for CY'18, I cannot provide specific timeline as we are still discussing the desi

... Read More

Are you interested in getting an early look at the cloud-based version of Advanced Threat Analytics? At the Ignite conference, we announced Azure ATP, a cloud-based version of ATA. You can enjoy your own instance free of charge for 6 months by signing up

... Read More
80 Views
0 Reply

Can anyone point me to any specific features in Cloud App Security that interact with security features of Windows 10 (that are not in other versions of Windows)?

98 Views
1 Reply

 Hi Dean,

 

Though we are looking into integrations between Cloud App Security and Windows 10, we currently don't have any specific features I can point you to.

We do hav

... Read More
Best Response confirmed by Dean Gross (Trusted Contributor)

Hi All,

 

I am trying to fetch activities of last few days and I am using below command,

curl "http://mydomain.cloudsecurity.com/api/v1/activities/" -H 'Authorization: Token mytoken"
-d ' { "filters" : { "activity.actionType" : { "eq" : "someevent" }, "date"

... Read More
115 Views
4 Replies

Hi Sanket,

 

The activities API endpoint has a query limit of 100 records to prevent overloading the endpoint with any one request. If you want to retrieve more than 100

... Read More
Best Response confirmed by Sanket Yeram (New Contributor)

Hi

 

According to our cloud app security we have a number of apps graded 3- 4 level security level, so since i have no user info(as the logs come from a checkpoint firewall and are not that integrated) I deciided to look at the firewall.

Cannot identify the

... Read More
82 Views
1 Reply

Hi Steve,

 

Cloud App Security uses your traffic logs to dynamically discover and analyze the cloud apps that your organization is using. The discovery of apps in achieve

... Read More

At Microsoft Ignite 2017, we announced the upcoming public preview of the Microsoft Cloud App Security proxy. We are very excited that the time has arrived, and this feature is now in public preview!

 

In this blog, we’ll dive deeper into the functional i

... Read More
311 Views
0 Reply

Currently using CAS to scan SharePoint Online for any documents that contain sensitive data, and the product seems to do a fine job of detection.   But it seems to be lacking in tools or process for remediation.

 

Scenario: 

 

  • CAS detects document in specific
... Read More
87 Views
2 Replies

Hello Scott,

Thanks for your feedback.

 

All alerts are generated at the specific point of time where a policy match was detected and aren’t edited later (after a file wa

... Read More

I am trying to follow the steps in Version 1.10 of the Office 365 Cloud App Security - Use Case and Usage Guide and all of them are slightly wrong. It looks like the UI has changed but the instructions have not.  Can anyone provide any information about h

... Read More
134 Views
3 Replies

This is one of the issues with the constantly changing UI in Microsoft cloud admin portals. Even Microsoft's own documentation falls out of date, let alone third party bo

... Read More

Hi Dean,

Thank you for the feedback. We are working on updating the document now and planning to release a new version in the next couple weeks.

 

@Anthony Smith (A.J.)

 

... Read More

We’re pleased to announce a new way to give feedback on Microsoft Cloud App Security (CAS). Our User Voice site allows you to make suggestions, vote on other people’s suggestions, and stay up-to-date on product roadmaps. Check it out at https://microsoftsecurity.uservoice.com

... Read More
285 Views
0 Reply

We have cloud app security as part of our microsoft estate 

We also have checkpoint firewalls as our main firewall for our on site security

Unfortunatley according to the compatibility matrix for the two products this is one of the least compatible  match u

... Read More
151 Views
1 Reply

Hi Steve,

 

Cloud App Security's Shadow IT Discovery is based on inteligent analysis of traffic logs generated by the customer's Proxy/Firewall. Thefore, the granualrity

... Read More

I am pretty confused on the difference between these two products. I'm currently using Cloud App Security with a client ($5/usr) and I access the console from O365 > Admin Centers > Cloud App Security. In the new Azure portal though, there's an Azure AD C

... Read More
499 Views
3 Replies

Hi All

 

Nice to be here.

We would like to monitor out amazon s3 estate and since we have what is effectively a CASB in microsoft cloud app security the i was thinking of using the api to push logs from the amazon s3 to CAP.

Now at cloud sec last week had a c

... Read More
174 Views
4 Replies
Looking at the doc you gave me it looks like this is a json config to allow cloud trail so if i put cloudtrail into the CAS then there isnt a lot of point putting it into... Read More
Thanks Dima

Hello Steve,

In answering I'll assume that by CAP you mean Cloud App Security (CAS), which is the Microsoft CASB product.

CAS is not meant to act as a SIEM server and con

... Read More

I have an activity report currently setup for individuals within our company to notify when information is accessed outside defined regions. Is there any plans to allow for suppressing events with a start/stop time with logic?

140 Views
3 Replies
I think Thomas means: to suppress alerts that happen within a certain time span. Is that correct Thomas?

Hi @Thomas Bui, I would be happy to help, but I'm not sure I understand the ask. Can you please clarify the scenario and motivation you are asking about? Thank you.

Read More

Can we integrate with apps apart from the ones we can setup out of the box from CAS using an API? If so, where can I get the documentation or any tutorials?

121 Views
2 Replies

Hi Chandrika,

No.  Today CAS only supports the app connectors you see in the console.  more to come in future releases.

When I look at our Discovered apps page, I do not see any information for the Upload information. How is this calculated or identified? I do know we are sending data files to certain websites and we are also storing some documents to OneDrive. Would this

... Read More
123 Views
1 Reply

Discovered apps page is populated by analyzing logs from firewall/proxies against our cloud app catalog to identify apps and rate them based on compliance with various se

... Read More

Visibility is the first step to protection: if you cannot see it, you cannot prevent it. Cloud App Security Shadow IT discovery capabilities help you to gain deeper visibility into your cloud environment by discovering more than 15K cloud apps used by you

... Read More
93 Views
0 Reply

How to I identify the AD group that a user belongs to for reporting purposes from the Cloud App Security system?

 

196 Views
3 Replies

Hello Chandrika,

To identify the groups associated with a user account, navigate to investigate> accounts and search for the user in question and click on the user groups

... Read More