Hey Jonathan, just wanted to say that I love the content. We haven't had a ton of clients wanting Defender in the past so I was putting off doing a deep dive into learning the tool but now that has changed I'm using your videos to get up to speed quickly. Thanks
Absolutely love the way you not only describe the feature, but describe it within the context of real-world scenarios and examples. Really quite extraordinary. Defender for Cloud Apps: love the solution, hate the price. But with that said, competitor solutions (SentinalOne, Nudge etc) are just as expensive. I do wonder if the money would better spent on training and awareness.
Hi Jonathan, great video as always. Just to note for anyone watching cloud app rules only work against edge, you need to configure a separate defender rule to block the CAD URL's on all browsers, otherwise the users will circumvent the controls on say Chrome. Also for the life of me I cannot find a way to white users who you dont want to be sanctioned to use an app but I cant find this anyway just devices which isnt very dynamic at all.
Nice and potentially powerful, Jonathan, but the required and expensive E5 license will not be accepted in small companies with Business Premium, too bad...
@@bearded365guy Ok Jonathan, I just bought an EM+S E5 license to do some testing. This license is not voluntarily assigned to any user; it is just present in the tenant. Tenant in which users nevertheless all have Business Premium. Minute 5:55, you show a dashboard of the Cloud Discovery as it should appear once the E5 license is present. Instead, despite refreshes and the activation of the necessary features (minute 7:10), I keep a simplistic view of Cloud Discovery as shown at minute 5:34. The Cloud Apps submenus (Cloud discovery, Cloud app catalog, OAuth apps, Files, Activity log, Governance log and Policies) are all there but what am I missing so that I can see the view as minute 5:55 please ?
Do we have to proxy the inbound connection >> Conditional Access >> MCAS? Eg:- block downloads, so we first set CA session policy to send requests to MCAS then we set a policy to block download etc..
Hi Jonathan, i got the full version of Defender for Cloud app (M365 E5 trial). However, under the cloud app options I still get the same dasbboard as shown for the business premium. Is this normal, if not, how can I resolve this?
Hello Jonathan, just for a clarification ,Why dont we purchase the Microsoft defender for cloud apps license separately which costs around 3$ per user in US for us, is there any particular reason to buy the enterprise license that you have mentioned.
The Microsoft Defender for Cloud Apps license can be bought for 3,96€ month to month per user or 39,60€ per year per user in Germany. I would also be interested in if there is a difference in functionality?
With regards to file shared with personal email address. Is intune supposed to handle this already? By creating DLP policy to block sharing for non-corporate emails.
Do you have Microsoft Defender for Endpoint actually running on the endpoint? The pre-installed Windows Defender Antivirus product is not enough. AFAIK, there's either a local software install required (non Entra Joined) or a policy deployment (Entra Joined) required to enable the SIEM/EDR capabilities of Microsoft Defender for Endpoint.
Hey Jonathan, just wanted to say that I love the content. We haven't had a ton of clients wanting Defender in the past so I was putting off doing a deep dive into learning the tool but now that has changed I'm using your videos to get up to speed quickly.
Thanks
Absolutely love the way you not only describe the feature, but describe it within the context of real-world scenarios and examples. Really quite extraordinary. Defender for Cloud Apps: love the solution, hate the price. But with that said, competitor solutions (SentinalOne, Nudge etc) are just as expensive. I do wonder if the money would better spent on training and awareness.
Hi Jonathan, great video as always. Just to note for anyone watching cloud app rules only work against edge, you need to configure a separate defender rule to block the CAD URL's on all browsers, otherwise the users will circumvent the controls on say Chrome.
Also for the life of me I cannot find a way to white users who you dont want to be sanctioned to use an app but I cant find this anyway just devices which isnt very dynamic at all.
Hi, sorry for jump in. But do you have reference to block the CAD URL's on all browser?
Hi Jonathan, this video is amazing. Thank you for sharing!
thanks for sharing! Can you please clarify if MDCA works only on web versions of office apps or desktop apps also?
@@jigyasugulati desktop apps too will be blocked
Nice and potentially powerful, Jonathan, but the required and expensive E5 license will not be accepted in small companies with Business Premium, too bad...
Yep, it’s a stretch.
@@bearded365guy Ok Jonathan, I just bought an EM+S E5 license to do some testing.
This license is not voluntarily assigned to any user; it is just present in the tenant.
Tenant in which users nevertheless all have Business Premium.
Minute 5:55, you show a dashboard of the Cloud Discovery as it should appear once the E5 license is present.
Instead, despite refreshes and the activation of the necessary features (minute 7:10), I keep a simplistic view of Cloud Discovery as shown at minute 5:34.
The Cloud Apps submenus (Cloud discovery, Cloud app catalog, OAuth apps, Files, Activity log, Governance log and Policies) are all there but what am I missing so that I can see the view as minute 5:55 please ?
Ok, it seems resolved, probably some latency...
Love this you’re the best
I hope you'll also publish a book in the future. 😀
Great Content
Do we have to proxy the inbound connection >> Conditional Access >> MCAS? Eg:- block downloads, so we first set CA session policy to send requests to MCAS then we set a policy to block download etc..
@@NDSLAB No, I don’t believe so.
Hi Jonathan, i got the full version of Defender for Cloud app (M365 E5 trial). However, under the cloud app options I still get the same dasbboard as shown for the business premium. Is this normal, if not, how can I resolve this?
Hello Jonathan, just for a clarification ,Why dont we purchase the Microsoft defender for cloud apps license separately which costs around 3$ per user in US for us, is there any particular reason to buy the enterprise license that you have mentioned.
The Microsoft Defender for Cloud Apps license can be bought for 3,96€ month to month per user or 39,60€ per year per user in Germany. I would also be interested in if there is a difference in functionality?
@@cybernithin6920 Ah, I must of overlooked this!
With regards to file shared with personal email address. Is intune supposed to handle this already? By creating DLP policy to block sharing for non-corporate emails.
I am confused, does this only work when using Edge? Doesnt seem to block urls when i am on Chrome.
It should do…
@@bearded365guy i must be missing something. I have blocked Mega filesharing, but it only seems to block on Edge.
@@edgecrush3r Time to ban Chrome on computers haha
Do you have Microsoft Defender for Endpoint actually running on the endpoint? The pre-installed Windows Defender Antivirus product is not enough. AFAIK, there's either a local software install required (non Entra Joined) or a policy deployment (Entra Joined) required to enable the SIEM/EDR capabilities of Microsoft Defender for Endpoint.