YoVDO

Configure Microsoft Defender for Cloud Apps for advanced scenarios

Offered By: Microsoft via Microsoft Learn

Tags

Windows Systems Administration Courses Network Security Courses REST APIs Courses

Course Description

Overview

  • Module 1: Learn how to use automation with Power Automate to manage alerts in Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Automatically remediate Microsoft Defender for Cloud Apps infrequent country alerts using Power Automate.
    • Creating custom flows for Microsoft Defender for Cloud Apps alerts using Power Automate.
    • Request manager validation for Microsoft Defender for Cloud Apps alerts using Power Automate.
    • Remove a malicious inbox forwarding rule using Power Automate.
  • Module 2: Learn how to integrate and manage third-party identity providers with Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Integrate PingOne with Defender for Cloud Apps.
    • Integrate Active Directory Federation Services with Defender for Cloud Apps.
  • Module 3: Learn how to configure Conditional Access App Control in Microsoft Defender for Cloud Apps for Workplace from Facebook, Box, and Slack.

    • In this module, you will:

    • Configure Conditional Access App Control steps for Workplace for Facebook.
    • Configure Conditional Access App Control steps for Box.
    • Configure Conditional Access App Control steps for Slack.
  • Module 4: Learn how to connect Microsoft Sentinel and other SIEM solutions to Microsoft Defender for Cloud Apps.

    • In this module, you will:

    • Connect Microsoft Sentinel to Microsoft Defender for Cloud Apps
    • Enrich incidents in Microsoft Sentinel with playbooks
    • Triage infrequent country requests with Microsoft Defender for Cloud Apps and Microsoft Sentinel
    • Connect a non-Microsoft security information and event management solution to Microsoft Defender for Cloud Apps
  • Module 5: Use advanced features of Microsoft Defender for Cloud Apps to protect more devices, integrate with other products, and customize security tools.

    • After completing this module, you’ll be able to:

    • Create a custom indicator of compromise in Microsoft Cloud App Security.
    • Observe security threats detected by Microsoft Cloud App Security in the Microsoft 365 Defender portal.
    • Block apps and websites on iOS devices by using Defender for Endpoint and Microsoft Cloud App Security.
    • Ensure that a log collector can communicate with Microsoft Cloud App Security from behind a proxy server.
    • Interact with Microsoft Cloud App Security by using the REST API.
  • Module 6: Learn where to find more information to help you to manage and administer Microsoft Defender for Cloud Apps. Keep up to date with announcements about Defender for Cloud Apps.

    • In this module, you will:

    • Review additional blogs

Syllabus

  • Module 1: Automate Microsoft Defender for Cloud Apps with Power Automate
    • Introduction
    • Automatically remediate Microsoft Defender for Cloud Apps infrequent country alerts using Power Automate
    • Create custom flows for Microsoft Defender for Cloud Apps alerts
    • Request manager validation for Microsoft Defender for Cloud Apps alerts
    • Remove a malicious inbox forwarding rule using Power Automate
    • Knowledge check
    • Summary
  • Module 2: Integrate third-party identity providers with Microsoft Defender for Cloud Apps
    • Introduction
    • Describe how to protect apps with Defender for Cloud Apps Conditional Access App Control
    • Deploy Conditional Access App Control with PingOne as the identity provider
    • Deploy Conditional Access App Control with AD FS as the identity provider
    • Knowledge check
    • Summary
  • Module 3: Enable Conditional Access App Control for third-party apps
    • Introduction
    • Describe how to protect apps with Defender for Cloud Apps Conditional Access App Control
    • Configure Conditional Access App Control for Workplace from Facebook
    • Configure Conditional Access App Control for Box
    • Configure Conditional Access App Control for Slack
    • Knowledge check
    • Summary
  • Module 4: Microsoft Defender for Cloud Apps SIEM integration
    • Introduction
    • Connect Microsoft Sentinel to Microsoft Defender for Cloud Apps
    • Enrich incidents in Microsoft Sentinel with playbooks
    • Triage infrequent country requests with Microsoft Defender for Cloud Apps and Microsoft Sentinel
    • Connect a non-Microsoft SIEM solution to Microsoft Defender for Cloud Apps
    • Knowledge check
    • Summary
  • Module 5: Configure advanced scenarios in Microsoft Defender for Cloud Apps
    • Introduction
    • Configure custom indicators of compromise
    • Integrate the Microsoft 365 Defender portal with Microsoft Defender for Cloud Apps
    • Protect iOS devices by using Microsoft Defender for Endpoint for iOS
    • Configure a log collector to connect to Microsoft Defender for Cloud Apps from behind a proxy
    • Use the Microsoft Defender for Cloud Apps REST API to interact with security information
    • Knowledge check
    • Summary
  • Module 6: Discover additional resources for Microsoft Defender for Cloud Apps
    • Introduction
    • Review additional blogs
    • Knowledge check
    • Summary

Tags

Related Courses

Amazon API Gateway for Serverless Applications
Amazon Web Services via AWS Skill Builder Desarrollo de aplicaciones avanzadas con Android
Universidad Nacional Autónoma de México via Coursera Application Development using Microservices and Serverless
IBM via Coursera Заключительный курс по теме «Прикладная наука о данных»
IBM via Coursera Wire Up an Auction Website with GraphQL
Coursera Project Network via Coursera