Microsoft Cloud App Secruity
Microsoft has been working diligently to deepen the integration between Azure Information Protection community and the Microsoft Cloud App Security to allow for expanded information protection scenarios that are important to you all.
Azure Information Protection Update
The current GA client is 18.104.22.168
- Nothing new to add, The Next GA release is scheduled for December.
- Microsoft is continuing to squash bugs
- Prevent an Outlook hang with Outlook reminders.
- Support updates for Office 64-bit, so that you can protect documents and emails.
- Fall back to the Calibri font if visual markers in the Azure Information Protection policy are configured for a font name that is not installed on the client.
- When you configure a label for user defined permissions and HYOK (AD RMS) protection, the protection no longer incorrectly uses the Azure Rights Management service.
A new Preview client has been posted! Current Preview is 22.214.171.124 which contains a number of new features:
- For Office apps, automatic and recommended classification runs continuously in the background, instead of running when documents are saved. With this change in behavior, you can now apply automatic and recommended classification to documents that are stored in SharePoint Online. Learn more about how this works here.
- A new advanced client setting to allow Outlook to apply a different default label, or no label. More information here.
- For Office apps, when you specify custom permissions, you can now browse and select users from an address book icon. This option brings parity to the user experience when you specify custom permissions by using File Explorer.
- Support for sharp graphics and text for dynamic dot per inch (DDPI) monitors. Applies to File Explorer, right-click to classify and protect files, the Azure Information Protection Viewer, and to the Click-to-Run version of Office 2016.
- Conditional Access
- The preview of conditional access enables admins to configure conditional access policies help secure access to sensitive information, you can Learn more here. Common scenarios include:
- Requiring Multifactor Authentication
- Checking device compliance/Domain Join
- Assessing risky-sign in
- Blocking access when the user is not on a trusted network
Introducing The public preview release of the Azure Information Protection scanner
- Use the scanner to crawl through files in CIFS based file shares and SharePoint sites and apply classification, labeling and protection on files based on your information protection policies. Learn more about the scanner in this blog.
- To configure the scanner, download the AzInfoProtection_PREVIEW_126.96.36.199.exe client and follow Deploying the Azure Information Protection scanner to automatically classify and protect files.
Here are some Other things to be aware of:
- Check out the AIP+CAS integration and how Cloud App Security can read files classified by AIP and set policies based on the file labels
- We’re adding a new feature to the new OneDrive sync client: the ability to sync IRM-protected SharePoint document libraries and OneDrive locations. You can learn more about this Preview here.
- The RMS Protection tool is moving to End Of Life on February 10, 2018. This functionality is replaced by the AIP Client.
- A reminder that the Azure classic portal is going to be retired on Nov 30. For more info please see this blog and Microsoft provides a great set of migration guidance in our Docs.
- A new AIP end user adoption guide is available. Use it to accelerate deployment and usage in your company
Also, Microsoft has adopted UserVoice as a platform for you to tell them what they should be working on, and we would encourage you all to take a look and place your votes to help Microsoft understand the priorities that you have.
Microsoft Cloud App Security
- In case you missed it, check out all the announcements from Ignite
- Conditional Access to monitor user sessions and control content access and downloads directly inside SaaS apps through integration between MCAS and Azure AD.
- A new Cloud App Discovery experience empowered by Microsoft Cloud App Security to provide deeper visibility into what apps and services your users are accessing. See comparison to MCAS discovery here.
- Microsoft has a new data center, in addition to our US-based data center, will enable Microsoft Cloud App Security customers to be in complete compliance with new and upcoming European standardization and certifications. For more information and for a list of IP addresses and ports that need to be opened to work with our new data center, see Network requirements.
- New filters were added to the App connectors page that provides you with simpler filtering and additional insight, including Connected by data, so that you know which user connected each app.
- Cloud discovery on log files that contain only destination IP information was improved.
- You can let Microsoft know what YOU need via the MCAS UserVoice site.
In summation, we hope that this helps you with your testing, planning, and deployments. We also know this can be a lot to absorb, and we are here to help!
- September 2018 (1)
- August 2018 (2)
- July 2018 (2)
- June 2018 (3)
- May 2018 (2)
- April 2018 (1)
- March 2018 (2)
- February 2018 (2)
- January 2018 (1)
- December 2017 (1)
- November 2017 (2)
- October 2017 (2)
- September 2017 (2)
- August 2017 (2)
- July 2017 (2)
- June 2017 (1)
- May 2017 (3)
- April 2017 (1)
- March 2017 (3)
- February 2017 (2)
- January 2017 (3)
- December 2016 (2)
- November 2016 (2)
- October 2016 (3)
- September 2016 (1)
- July 2016 (1)
- June 2016 (3)
- May 2016 (2)
- April 2016 (5)
- March 2016 (2)
- February 2016 (1)
- January 2016 (4)
- December 2015 (5)
- November 2015 (5)
- October 2015 (5)
- September 2015 (4)