Oct 12 2022 02:33 AM - edited Oct 12 2022 02:33 AM
When I read the prerequisite of license requirements in (https://learn.microsoft.com/en-us/defender-cloud-apps/get-started#prerequisites)
"In order for your organization to be in compliance for licensing Microsoft Defender for Cloud Apps, you must obtain a license for every user protected by Microsoft Defender for Cloud Apps."
What is the definition of a protected user?
If I enable to get logging from Defender from Endpoints, will that mean all these users need a license as all their traffic is coming into MDCA? This could be classified as "monitoring". Or will a license only be required if I create an action policy, like a BLOCK or PROTECT policy?
Oct 19 2022 03:14 AM
Oct 19 2022 10:47 AM
Oct 19 2022 01:48 PM - edited Oct 19 2022 01:50 PM
I think you have 2 questions here.
Oct 19 2022 01:55 PM