Defender for Cloud Apps support for Graph API (preview)*
November 2024 Update 2
Defender for Cloud Apps support for Graph API (preview)
Defender for Cloud Apps customers can now query data about discovered apps via the Graph API. Use the Graph API to customize views and automate flows on the Discovered apps page, such as applying filters to view specific data. The API supports GET capabilities only.
For more information, see:
- Work with discovered apps via Graph API
- Microsoft Graph API reference for Microsoft Defender for Cloud Apps
SaaS Security initiative in Exposure Management
Microsoft Security Exposure Management offers a focused, metric-driven way of tracking exposure in specific security areas using security initiatives. The "SaaS security initiative" provides a centralized location for all best practices related to SaaS security, categorized into 12 measurable metrics. These metrics are designed to assist in effectively managing and prioritizing the large number of security recommendations. This capability is General Availability (Worldwide) - Note Microsoft Security Exposure Management data and capabilities are currently unavailable in U.S Government clouds - GCC, GCC High and DoD
For more information, see SaaS security initiative.
Visibility into app origin (Preview)
Defender for Cloud Apps users who use app governance will be able to gain visibility into the origin of OAuth apps connected to Microsoft 365. You can filter and monitor apps that have external origins, to proactively review such apps and improve the security posture of the organization.
For more information, see detailed insights into OAuth apps.
Permissions filter and export capabilities (Preview)
Defender for Cloud Apps users who use app governance can utilize the new Permissions filter and export capabilities to quickly identify apps with specific permissions to access Microsoft 365.
For more information, see filters on app governance.
Visibility into privilege level for popular Microsoft first-party APIs (Preview)
Defender for Cloud Apps users who use app governance can now gain visibility into privilege level for all popular Microsoft first-party API permissions. The enhanced coverage of privilege level classification will enable you to view and monitor apps with powerful permissions into legacy and other non-Graph APIs that have access to Microsoft 365.
For more information, see OAuth app permission related details on app governance.
Granular data usage insights into EWS API access (Preview)
Defender for Cloud Apps users who use app governance can now get granular insights into data accessed by apps using legacy EWS API alongside Microsoft Graph. The enhanced coverage of data usage insights will enable you to get deeper visibility into apps accessing emails using legacy EWS API.
For more information, see OAuth app data usage insights on app governance.