11/28/2023 0 Comments Nxfilter cloud![]() To use this query again in the future, under Queries, scroll down to Saved queries and select your query.ĭefender for Cloud Apps also provides you with Suggested queries and enables you to save custom queries you frequently use. In the Save query pop-up, name your query. In the Discovered apps page, use the filters as described above to drill down into your apps as necessary.Īfter you've achieved the wanted results, select the Save as button above the filters. To make an investigation even simpler, you can create custom queries and save them for later use. You can also access the App tags screen by selecting the Manage tags link in the corner. When you create the tag from the discovered app, you can apply it to the app. You can also create a new app tag directly in the Discovered apps table by selecting Create app tag after selecting the three dots to the right of any selected app. To apply an app tag, in the Discovered apps tab, select the three dots at the far right of the app name. ![]() You can use the App tags table to view which apps are currently tagged with each app tag and you can delete unused app tags. In the Microsoft 365 Defender portal, select Settings. App tags can be also used in app discovery policies in filters or by applying tags to apps as part of the policy governance actions. For example, custom watch list, assignment to a specific business unit, or custom approvals, such as "approved by legal". These tags can then be used as filters for deeper diving into specific types of apps that you want to investigate. Examples include GDPR ready cloud apps, DMCA, and data retention policy. Legal risk factor: Lets you filter based on all the regulations and policies that are in-place to ensure data protection and privacy of the app's users.Transaction: One log line of usage between two devices.Usage such as apps with less than or more than a specified number of data uploads, apps with more than or less than a specified number of Users. Usage: Lets you filter based on the usage statistics of this app.Security risk factor: Enables you to filter based on specific security measures (such as Encryption at rest, multi-factor authentication, etc.).For more information, see Working with the risk score. You can also override the risk score set by Defender for Cloud Apps. Risk score: Lets you filter apps by risk score so that you can focus on, for example, reviewing only highly risky apps.General risk factor: Lets you search for general risk factors such as consumer popularity, data center locale, and more.Compliance risk factor: Lets you search for a specific standards, certification, and compliance that the app may comply with (HIPAA, ISO 27001, SOC 2, PCI-DSS, and more.).You can select multiple categories at a time, or a single category, then apply the basic and advanced filters on top. Example categories include social network apps, cloud storage apps, and hosting services. ![]() ![]() Categories: The categories filter, located on the left of the page, enables you to search for types of apps according to app categories.Apps and domains: Enables you to search for specific apps or apps used in specific domains.Additionally, you can create a custom tag for your app and then use it to filter for specific types of apps. App tag: Select whether the app was sanctioned or unsanctioned or not tagged.When you turn on Advanced filters, you'll see a list of possible filters, including the following: The basic filter includes the filters found in this image: There are two ways to filter your discovered apps. This article describes what filters are available and how to query your discovered apps. When you have a large number of discovered apps, you'll find it useful to filter and query them. For more information, see Microsoft Defender for Cloud Apps in Microsoft 365 Defender. Microsoft Defender for Cloud Apps is now part of Microsoft 365 Defender, which correlates signals from across the Microsoft Defender suite and provides incident-level detection, investigation, and powerful response capabilities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |