Defender for Identity (MDI) use for SSPM

RVC · ‎Oct 10 2022

MDCA has some dependencies to report issues based on the telemetry of MDI accurately. While I was firstly under the assumption, this is related to identities only and limited to the OnPrem directory. I also understand MDI helped MDCA in SSPM.

But, as MDI focuses on OnPrem AD (and ADFS) I presume the SSPM capability is limited to the same scope. Thus "only" to apps accessed by an AD account or where ADFS is used? Is this correct?

(Assumption): Other SSPM capabilities are performed by MDCA, probably with the enrichment of AAD ID protection. Am I right?

Keith_Fleming · ‎Oct 11 2022

Hi @RVC,

SSPM data is pulled through Defender for Cloud Apps app connectors and is currently available for SalesForce and ServiceNow based on best practices set by the vendor.

Identity Security Posture Reports are generated and calculated within MDI, they are just surfaced through the Defender for Cloud Apps portal now.

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Defender for Identity (MDI) use for SSPM

Defender for Identity (MDI) use for SSPM

Re: Defender for Identity (MDI) use for SSPM