This lab will guide you through the different Microsoft Cloud App Security (MCAS) capabilities. Although some labs are pretty straight forward ,we expect you to already have some basic experience with Cloud App Security or Office 365 management.
- Client01 is a Windows 10 VM that will be used to access Office 365 and Cloud app Security management consoles and configure the log collector running on LinuxVM, using Putty.
- LinuxVM is an Ubuntu 18.04 computer on which we install Docker to run the Cloud App Security Discovery log collector.
- Office 365 and Cloud App Security are test tenants for the labs.
📝 We recommend using the Cloud App Security documentation to have details on the different use cases, capabilities and configuration steps.
- Office 365: https://portal.office.com
- Cloud App Security: https://portal.cloudappsecurity.com
- Security & Compliance Center: https://protection.office.com
- Windows Defender ATP: https://securitycenter.windows.com
⚠️ ⚠️ ⚠️ Before going to the different labs section, please complete the environment preparation.⚠️ ⚠️ ⚠️
The different Cloud App Security capabilities covered in the labs are:
- Module 01 - Management
- Module 02 - Cloud Discovery continuous report
- Module 03 - Information protection
- Module 04 - Threat detection
- Module 05a - Management with PowerShell
- Module 05b - Cloud Discovery snapshot report
- Module 05c - Log collector troubleshooting
- Module 05d - Conditional Access App Control
❓ If you have questions or want to go further in your Cloud App Security journey, join our Tech community !