browse
Third-Party Apps Discovery provides you with comprehensive insights into the third-party applications, extensions, and plug-ins that have been granted access to your Microsoft 365 (M365) tenant via OAuth.
By leveraging this feature, you can not only identify what is connected to your tenant but also understand the access scopes that have been authorized, complete with a risk score to highlight potentially risky scopes.
Why is this important?
We believe this new feature will greatly enhance your ability to manage and secure your M365 environments. By providing visibility into third-party app connections and highlighting risky access scopes, we empower you to make informed decisions and take proactive steps to mitigate potential security threats.
What are the risks of OAuth-based integrations?
OAuth-based integrations, while incredibly useful for enhancing productivity and streamlining workflows, can sometimes pose significant security risks. When third-party apps are granted access to an M365 tenant, they often request various permissions or access scopes. These scopes can range from basic read-only access to more sensitive permissions that allow for data modification or administrative control. If not carefully managed, these permissions can expose the organization to data breaches, unauthorized data access, and other security vulnerabilities.
How do we calculate the risk score?
We take all the authorization scopes and rate them as low, mid, or high according to their potential risk. For example, scopes that allow the app access to basic user details are considered low risk, while scopes that allow an app to write and edit data or configuration are considered high risk. In the end, we show the highest risk that we found for all the access scopes that were given. This approach ensures that our customers are aware of the most significant risks associated with each third-party app.
How can I access Third-Party Apps Discovery?
In the Umbrella dashboard navigate to Reporting > Additional Reports > Third-Party Apps.
Where can I find more information?
Refer to Umbrella documentation for guidance on using Third-Party Apps report.
Umbrella Documentation:
Third Party Apps Report
Enable Cloud Access Security Broker for Microsoft 365 Tenants