Today, Microsoft announced General Availability of Cloud App Security, previously Adallom, their new CASB (Cloud Access Security Broker) solution. The features of this are:

040616_1602_CloudAppSec1.png Discover Uncover Shadow IT with Cloud App Security. Gain visibility by discovering apps, activities, users, data and files in your cloud environment as well as third-party apps that are connected to your cloud.
040616_1602_CloudAppSec2.png Investigate Investigate your cloud apps using cloud forensics tools to deep-dive into risky apps, specific users and files in your network as well as finding patterns in the data collected from your cloud and generating reports to monitor your cloud.
040616_1602_CloudAppSec3.png Control Mitigate risk by setting policies and alerts in order to achieve maximum control over network cloud traffic. Use Cloud App Security to migrate your users to safe, sanctioned cloud app alternatives.
040616_1602_CloudAppSec4.png Protect Use Cloud App Security to sanction/unsanction applications, enforce DLP, control permissions and sharing, and generate custom reports and alerts. Mitigate risk by setting policies and alerts in order to achieve maximum control over network cloud traffic. Use Cloud App Security to migrate your users to safe, sanctioned cloud app alternatives.

Here is the reference architecture

NOTE: During content inspection, your data is not stored in Cloud App Security. Data is downloaded for purposes of inspection but data privacy is enforced. See our privacy policy for more information.

040616_1602_CloudAppSec5.png

You can either upload data manually or via the Collector

The following Firewall vendors are supported

  • Blue Coat
  • Cisco
    • Cisco ASA – Virtual Context
    • Cisco ScanSafe
    • Cisco IronPort WSA
  • Zscaler
  • Fortigate
  • Palo Alto
  • McAfee Secure Web Gateway
  • Check Point
    • Check Point
    • Check Point OPSEC LEA
  • Squid (Common)
  • Juniper SRX
  • Sophos SG
  • Microsoft For

Let’s take an initial look at setting this up! You can find some information on configuration over on TechNet

https://technet.microsoft.com/en-us/library/mt489024.aspx

First, if you don’t already own licenses (you probably don’t), let’s grab some trial licenses first from http://www.cloudappsecurity.com/

040616_1602_CloudAppSec6.png

Let’s choose Buy Now

040616_1602_CloudAppSec7.png

It recognizes my O365 account, we’ll add it to my account

040616_1602_CloudAppSec8.png 040616_1602_CloudAppSec9.png 040616_1602_CloudAppSec10.png

Now, let’s go to the O365 Admin Center and we should see our trial licenses

040616_1602_CloudAppSec11.png

Let’s go assign some licenses to our users

040616_1602_CloudAppSec12.png

And we should also see the new Cloud App Security Admin portal

040616_1602_CloudAppSec13.png

We should see our basic portal!

040616_1602_CloudAppSec14.png

In the next blog, we’ll step through some of the admin portal experience!

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>