In a modern workplace where the average enterprise is using over 1,500 different cloud apps, and more than 80 gigabytes of data is being uploaded monthly to risky apps from business endpoint devices, the ability of IT and compliance administrators to manage and monitor shadow IT becomes an (almost) impossible mission. It is not only about the ability to assess the potential risk that cloud apps pose to the company, but also about the tools IT has (or doesn’t have) to control and manage access to these apps.
Microsoft Cloud App Security and Microsoft Defender ATP teams have partnered together to build a Microsoft Shadow IT visibility and control solution.
Shadow IT Discovery for endpoint users was officially announced earlier this year, the solution, leverage the traffic information collected by the Windows Defender ATP to give admins a complete view of cloud app- and services used in their organization. This was the first step towards enabling a seamless, zero deployment, native cloud app security solution that works any time any-where.
We are now ready to move forward to the next phase of this integration and announce the public preview of the functionality to block access to unsanctioned apps by leveraging Microsoft Defender network protection capability.
Figure 1: Configure a cloud app as unsanctioned in one click
Please read the following blog post to learn why we do it, how to enable it with a single click, what the new value is and how we’re going to continue to enhance these capabilities in the future.
Technical info and feedback
To learn how to get started with Microsoft Cloud App Security Integration with our detailed technical documentation.
As always, we want to hear from you! If you have any suggestions or comments, please share your thoughts on the feature using this short survey!
@Danny Kadyshevitch @Nick Welton @Ron Itzhak