How to monitor uploads to whitelisted O365 tenant ? (tenant restrictions)

%3CLINGO-SUB%20id%3D%22lingo-sub-2846802%22%20slang%3D%22en-US%22%3EHow%20to%20monitor%20uploads%20to%20whitelisted%20O365%20tenant%20%3F%20(tenant%20restrictions)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2846802%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20currently%20implementing%20%22tenant%20restrictions%22%20to%20limit%20the%20external%20Office%20365%20tenants%20accessible%20from%20a%20corporate%20worksations.%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fmanage-apps%2Ftenant-restrictions%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fmanage-apps%2Ftenant-restrictions%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHowever%2C%20we%20don't%20know%20how%20to%20monitor%20the%20flows%20towards%20whitelisted%20tenants%20(to%20avoid%20unwanted%20data%20leakage)%3A%26nbsp%3B%3C%2FP%3E%3CP%3E-%20The%20proxy%20is%20not%20able%20to%26nbsp%3Bdifferentiate%20our%20tenant%20from%20other%20tenants%20(except%20for%20SharePoint%20with%20url%20tenant.sharepoint.com)%20for%20Exchange%20and%20Teams%20services%3C%2FP%3E%3CP%3E-%20I%20don't%20think%20that%20Office%20DLP%20for%20Endpoint%20is%20able%20to%20differentiate%20our%20tenant%20from%20other%20tenants%3C%2FP%3E%3CP%3E-%20Maybe%20Risk%20Insider%20Management%20%3F%20(but%20what%20are%20the%20prequesites%20in%20addition%20to%20the%20E5%20licenses%3F)%3C%2FP%3E%3CP%3E-%20Maybe%20an%20other%20option%20%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20in%20advance%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2846802%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Contributor

Hello, 

 

We are currently implementing "tenant restrictions" to limit the external Office 365 tenants accessible from a corporate worksations. 

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/tenant-restrictions

 

However, we don't know how to monitor the flows towards whitelisted tenants (to avoid unwanted data leakage): 

- The proxy is not able to differentiate our tenant from other tenants (except for SharePoint with url tenant.sharepoint.com) for Exchange and Teams services

- I don't think that Office DLP for Endpoint is able to differentiate our tenant from other tenants

- Maybe Risk Insider Management ? (but what are the prerequesites in addition to the E5 licenses?)

- Maybe an other option ?

 

Thanks in advance

0 Replies