Nov 22 2021 04:31 PM
Hi team,
I have a question.
When using MCAS, I know that users deliver requests and responses to the app through "Proxy (Access + Session)."
Then, is the actual DATA delivered to the user through Cloud App Security? Or is it delivered directly to the user from the data center where the data is stored?
In the "Data Location" section of the document "https://docs.microsoft.com/en-us/cloud-app-security/what-is-defender-for-cloud-apps'", I confirmed that MCAS' data centers are only in Europe, the UK, and the United States.
So if I'm using MCAS when I asked for M365 data in Korea from Singapore, does it mean that traffic flows back to Korea through one of the three regions? Or will only requests and responses for data go to one of the three regions, and M365 data be delivered directly from Korea to Singapore?
Best Regards,
YJ
Nov 24 2021 05:19 AM
Nov 24 2021 09:41 PM
Nov 25 2021 12:04 AM
SolutionDec 02 2021 09:55 AM
The user's entire session and all its data will be proxied through the MCAS session (reverse) proxy only if, at logon time, there was a session policy in MCAS that matched the user's sign-in. Note this is only supported for browser-based access, not client app access.
If only an MCAS access policy matches the sign-in (no session policy), then the entire session will be allowed or blocked, but if allowed, the session will go directly to the cloud app, not through the session proxy.
Hope that helps clarify it.
Nov 25 2021 12:04 AM
Solution