Jul 06 2021 07:20 AM
Hello Community Members,
we have some unsanctioned apps in MCAS and created a service user which still should have access to those domains.
Is it possible to excluse users or devices so that they wont be blocked when accessing the domains?
Thanks in advance 🙂
Jul 06 2021 08:01 AM - edited Jul 06 2021 08:02 AM
Hello,
In Settings cog - in the right upper corner under cloud discovery: exclude entities - add your users, IP, groups, devices.
"This list contains discovered users who are excluded from Cloud Discovery data in your organization. Exclusions apply only to new data."
Jul 06 2021 08:10 AM
Jul 06 2021 08:26 AM
Jul 06 2021 08:26 AM
Jul 06 2021 08:31 AM
Jul 06 2021 10:40 AM
Oct 20 2021 10:04 PM
is there any way to perform this? Why is this feature not added from get-go? such a pain and will cause the product not to be used now...
Oct 26 2021 10:19 AM
Oct 26 2021 04:57 PM
Oct 26 2021 05:47 PM - edited Oct 26 2021 05:53 PM
Yes, I am pretty sure it is a functionality many people want.
In this case, MCAS does not have forward proxy functionality in itself, so it only supplies list of unsanctioned Apps(URLs), and it is then up to the solution that does the blocking (MDE, SWGs etc) to manage the targets and actions to take (to block or warn, who or what to target/override).
MDE does not have any functionality to target specific users, only device groups, so targeted overrides is quite limited at the moment.
If more complex policy management is a must, you would have to look at SWGs such as Zscaler Internet Access, which also works with MCAS cloud discovery and can do automatic blocking.
Oct 26 2021 06:02 PM