YoVDO

Configure Microsoft Defender for Cloud Apps for advanced scenarios

Offered By: Microsoft via Microsoft Learn

Tags

Windows Systems Administration Courses Network Security Courses REST APIs Courses

Course Description

Overview

  • Module 1: Learn how to use automation with Power Automate to manage alerts in Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Automatically remediate Microsoft Defender for Cloud Apps infrequent country alerts using Power Automate.
    • Creating custom flows for Microsoft Defender for Cloud Apps alerts using Power Automate.
    • Request manager validation for Microsoft Defender for Cloud Apps alerts using Power Automate.
    • Remove a malicious inbox forwarding rule using Power Automate.
  • Module 2: Learn how to integrate and manage third-party identity providers with Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Integrate PingOne with Defender for Cloud Apps.
    • Integrate Active Directory Federation Services with Defender for Cloud Apps.
  • Module 3: Learn how to configure Conditional Access App Control in Microsoft Defender for Cloud Apps for Workplace from Facebook, Box, and Slack.

    • In this module, you will:

    • Configure Conditional Access App Control steps for Workplace for Facebook.
    • Configure Conditional Access App Control steps for Box.
    • Configure Conditional Access App Control steps for Slack.
  • Module 4: Learn how to connect Microsoft Sentinel and other SIEM solutions to Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Connect Microsoft Sentinel to Microsoft Defender for Cloud Apps
    • Enrich incidents in Microsoft Sentinel with playbooks
    • Triage infrequent country requests with Microsoft Defender for Cloud Apps and Microsoft Sentinel
    • Connect a non-Microsoft security information and event management solution to Microsoft Defender for Cloud Apps
  • Module 5: Use advanced features of Microsoft Defender for Cloud Apps to protect more devices, integrate with other products, and customize security tools.

    • After completing this module, you’ll be able to:

    • Create a custom indicator of compromise in Microsoft Cloud App Security.
    • Observe security threats detected by Microsoft Cloud App Security in the Microsoft 365 Defender portal.
    • Block apps and websites on iOS devices by using Defender for Endpoint and Microsoft Cloud App Security.
    • Ensure that a log collector can communicate with Microsoft Cloud App Security from behind a proxy server.
    • Interact with Microsoft Cloud App Security by using the REST API.
  • Module 6: Learn where to find more information to help you to manage and administer Microsoft Defender for Cloud Apps. Keep up to date with announcements about Defender for Cloud Apps.

    • In this module, you will:

    • Review additional blogs

Syllabus

  • Module 1: Automate Microsoft Defender for Cloud Apps with Power Automate
    • Introduction
    • Automatically remediate Microsoft Defender for Cloud Apps infrequent country alerts using Power Automate
    • Create custom flows for Microsoft Defender for Cloud Apps alerts
    • Request manager validation for Microsoft Defender for Cloud Apps alerts
    • Remove a malicious inbox forwarding rule using Power Automate
    • Knowledge check
    • Summary
  • Module 2: Integrate third-party identity providers with Microsoft Defender for Cloud Apps
    • Introduction
    • Describe how to protect apps with Defender for Cloud Apps Conditional Access App Control
    • Deploy Conditional Access App Control with PingOne as the identity provider
    • Deploy Conditional Access App Control with AD FS as the identity provider
    • Knowledge check
    • Summary
  • Module 3: Enable Conditional Access App Control for third-party apps
    • Introduction
    • Describe how to protect apps with Defender for Cloud Apps Conditional Access App Control
    • Configure Conditional Access App Control for Workplace from Facebook
    • Configure Conditional Access App Control for Box
    • Configure Conditional Access App Control for Slack
    • Knowledge check
    • Summary
  • Module 4: Microsoft Defender for Cloud Apps SIEM integration
    • Introduction
    • Connect Microsoft Sentinel to Microsoft Defender for Cloud Apps
    • Enrich incidents in Microsoft Sentinel with playbooks
    • Triage infrequent country requests with Microsoft Defender for Cloud Apps and Microsoft Sentinel
    • Connect a non-Microsoft SIEM solution to Microsoft Defender for Cloud Apps
    • Knowledge check
    • Summary
  • Module 5: Configure advanced scenarios in Microsoft Defender for Cloud Apps
    • Introduction
    • Configure custom indicators of compromise
    • Integrate the Microsoft 365 Defender portal with Microsoft Defender for Cloud Apps
    • Protect iOS devices by using Microsoft Defender for Endpoint for iOS
    • Configure a log collector to connect to Microsoft Defender for Cloud Apps from behind a proxy
    • Use the Microsoft Defender for Cloud Apps REST API to interact with security information
    • Knowledge check
    • Summary
  • Module 6: Discover additional resources for Microsoft Defender for Cloud Apps
    • Introduction
    • Review additional blogs
    • Knowledge check
    • Summary

Tags

Related Courses

Manage Office 365 Identities
Microsoft via edX Windows Server 2012 System Administration: Get an IT Job!
Udemy Windows Server 2016 Administration
Udemy Windows 10: Configure Storage
LinkedIn Learning Windows 10: Deploy and Manage Virtual Applications
LinkedIn Learning