User Profile

Rhul1545

Copper Contributor

Joined Jun 09, 2020

11 Posts1 LikeLikes received

View All Badges

User Widgets

Recent Discussions

Microsoft Purview Insider Risk Management
Hello Guys, Recently I have been working on Insider Risk Management and wanted to know what is the alert generation window. I am getting alerts long time (7-10 days after) after triggering the policy triggers
Feb 17, 2023 Place Microsoft Purview
804Views
0likes
1Comment
Re: Regarding Exact Data Matches (EDM)
Hi Martin, Thanks for the reply. In addition to above I also had below question: 1. EDM usually send the hash via public internet. Is there any encryption in place to secure it.? 2. Also can we use express route instead of public internet?
Nov 03, 2021 Place Microsoft Security
2.1KViews
0likes
1Comment
Regarding Exact Data Matches (EDM)
Hi All, We have configured EDM sensitive types. We have got a couple of questions regarding the hash file of customer data that us uploaded using thr EDM Upload Agent. 1. Where are the hash files stored in M365 2.What happens to the old hash file once a new is uploaded 3. Can the EDM upload agent work in presence of a proxy like Zscaler or MWG 4.Can we access the uploaded hash file on M365 Compliance portal 5. What is the best location (on-premise) to deploy the EDM Upload Agent VM Please provide help ASAP as I need to provide info on this to my team by the end of this week.
Sep 14, 2021 Place Microsoft Security
data loss prevention
Security and Compliance Center
2.3KViews
1like
3Comments
Regarding DLP in Security and Compliance portal
Hi All, While accessing the DLP policy match reports on security and compliance portal can someone tell me what type of data is shown in sensitive information column in details table .............does it show sensitive information type detected in that particular incident. Also had one more doubt that if I have made a policy tip in Exchange admin DLP and one in O365 DLP will the tip created in later one work??? Please reply ASAP
May 24, 2021 Place Microsoft Security
data loss prevention
Security and Compliance Center
649Views
0likes
0Comments
MCAS Log Collector Deployment
Hi All, I had one query regarding MCAS Log Collector Deployment is that how can I ensure the high availability for the server to be deployed on premises Thanks, Rahul Kumar
Dec 16, 2020 Place Microsoft Defender for Cloud Apps
Cloud Discovery
3KViews
0likes
2Comments
Need for proxy bypass for deploying MCAS log collector
Hi All, I have 2 doubts regarding MCAS log collector deployment While going through Microsoft documentation I found that we have to bypass proxy authentication for deploying log collector. What happens if we don't bypass the proxy authentication? Below is a sample image of log collector from Microsoft documentation (echo 6f19225ea69cf5f178139551986d3d797c92a5a43bef46469fcc997aec2ccc6f) | docker run --name MyLogCollector -p 21:21 -p 20000-20099:20000-20099 -e "PUBLICIP='192.2.2.2'" -e "PROXY=192.168.10.1:8080" -e "CONSOLE=tenant2.eu1-rs.adallom.com" -e "COLLECTOR=MyLogCollector" --security-opt apparmor:unconfined --cap-add=SYS_ADMIN --restart unless-stopped -a stdin -i mcr.microsoft.com/mcas/logcollector starter So in the field bolded " PROXY=192.168.10.1:8080" , what does providing the proxy ip and port do in this case? Please provide answers asap.. Thanks
Solved
Dec 10, 2020 Place Microsoft Defender for Cloud Apps
Cloud App Security
Cloud Discovery
1.3KViews
0likes
1Comment
Regarding MS flow with MCAS
Hi guys, I was actually creating a flow in Power Automate based on a alert of MCAS "Risky application discovered" so my use-case for flow is to send mail to relevant person and let him decide to dismiss the alert to tag the app as unsanctioned . So while configuring the unsanctioned part in flow i am getting the following error . need help on this asap
Jul 23, 2020 Place Microsoft Defender for Cloud Apps
Cloud App Security
1KViews
0likes
1Comment
Re: MCAS Snapshot Reports
JanBakkerOrphaned I created sanpshot report by uploading logs manually on MCAS portal and have configured some cloud discovery policies . So, my query is that will alerts be triggered based on the data in snapshot report?
Jul 20, 2020 Place Microsoft Defender for Cloud Apps
1.9KViews
0likes
1Comment
MCAS Snapshot Reports
Hi All, Can MCAS Snapshot reports trigger Cloud Discovery alert policies . Need help on this ASAP
Solved
Jul 20, 2020 Place Microsoft Defender for Cloud Apps
Cloud App Security
Cloud Discovery
2KViews
0likes
3Comments
Connecting O365 DLP policies with MS FLOW
Hi Everyone, I was just curious that can we link the O365 DLP policy with the Microsoft flow? Requesting to please provide info on this ASAP
Jul 04, 2020 Place Microsoft Security
618Views
0likes
0Comments
Regarding Log collector deployment
Hi all, I am a beginner in MCAS and had a query that after deploying the log collector image along with configuration via docker how can I get my firewall/proxy logs on the log collector. Requesting to please provide a descriptive explanation.
Jun 09, 2020 Place Microsoft Defender for Cloud Apps
Cloud App Security
Cloud Discovery
1.4KViews
0likes
1Comment

Recent Blog Articles

No content to show