cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Securit

Ashish Trivedi
Brass Contributor

‎Jun 19 2019 05:07 AM

‎Jun 19 2019 05:07 AM

Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Securit

I have created AIP labels. I have applied them via Microsoft Cloud App Security File policy based on DLP rules. Working fine now.

The objective is to stop those file upload to personal storage/email like gmail or dropbox. I looked upon the MCAS session policy which has session control type of control file upload (with DLP). I created one leaving App filter empty, added file filter to match classification labels with inspection method. Now it blocks file upload even to SharePoint Online.

The conditional rule is on SPO and ExO with session control using custom policy for conditional access app control.

How do I just block files to move out of environment rather blocking upload to SPO or other locations?

Labels:
22.6K Views
0 Likes
6 Replies
Reply
6 Replies
Sebastien Molendijk

‎Jun 20 2019 08:37 AM

‎Jun 20 2019 08:37 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

@Ashish Trivedi 

 

Thanks for your question.

This scenario is currently not supported by Cloud App Security but could be partially achieved using Windows Information Protection and Microsoft Defender ATP .

 

Please review the following documentation:

https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/informati...

 

Sebastien

1 Like
Reply
ChristianBergstrom

‎May 18 2020 03:36 AM - edited ‎May 18 2020 03:44 AM

‎May 18 2020 03:36 AM - edited ‎May 18 2020 03:44 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

@Ashish Trivedi Hello, may I ask how you ended up configuring your products to meet your needs? Did you use ATP/MIP as suggested? Thanks in advance.

 

*edit* For information we have disabled all 'third-party storage providers' just about everywhere. I'm curious though as I would like to manage the data and not necessarily disable all features.

0 Likes
Reply
PoojaN

‎Apr 24 2021 02:49 AM

‎Apr 24 2021 02:49 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

@Ashish Trivedi : Can you please explain steps how to block users uploading files (any labels) from sharepoint/any drive to personal drive eg G-dirve/dropbos/ gmail?

Thank you

1 Like
Reply
sanjay_senapati95

‎Sep 21 2022 01:59 AM

‎Sep 21 2022 01:59 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

@Ashish Trivedi In defender Could you help steps how to block users uploading files (any labels) from sharepoint/any drive to personal drive eg G-dirve/dropbos/ gmail? 

0 Likes
Reply
Ivan1010

‎Sep 18 2023 09:02 AM

‎Sep 18 2023 09:02 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

Hi its 2023 and we are still looking for a solution here. Any leads please?
0 Likes
Reply
Didi00

‎Oct 03 2023 04:57 AM

‎Oct 03 2023 04:57 AM

Re: Block upload of files to public locations likes gmail, dropbox etc using Microsoft Cloud App Sec

That is still indeed an unresolved point @Ashish Trivedi

Does anyone have any idea when it will be covered by MDCA? Or will it ever be?

This is quite a basic capability, what is the point of knowing upload/download traffic if we can not block those actions separately? 

0 Likes
Reply