118 questions with Microsoft Defender for Cloud Apps-related tags
How can I get the badge of my challenge ?
Get challenge bage
We have files or folder restored by Danet which assigns us as the owner, but when the tenancy user shares or accesses a file, it generates a Cloud Apps Alert. It's a false alert and shouldn't assign us as the owner.
We have files or folder restored by Danet which assigns us as the owner, but when the tenancy user shares or accesses a file, it generates a Cloud Apps Alert. It's a false alert and shouldn't assign us as the owner.
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
O365 MS Defender URL indicator - URL is invalid
Hi, I'm trying to add URL Indicators in MS Defender but it doesn't seem to work. I've created a CSV file (based on the sample file provided by Microsoft). I did not fill in the columns for ExpirationTime, RecommendedActions, RbacGroups, Category,…
Testing policy - Potential ransomware activity, nothing happens
I am testing Cloud Apps Security and I want to launch potential threat in action. So the policy "Potential ransomware activity" is enabled for all users, computer is onboarded to Defender for Endpoint, and when I create locally .zyx file and…
![](https://techprofile.blob.core.windows.net/images/iyN8gQFAAwAAAAAAAAAAAA.png?8DC6DB)
![](https://techprofile.blob.core.windows.net/images/iyN8gQFAAwAAAAAAAAAAAA.png?8DC6DB)
Troubleshoot SIEM tool integration issues
we have followed the docs to collect data from Microsoft Azure Event Hub, for Microsoft Defender integration on elastic stack. for some reason we're not receiving the data?
Is it recommended to block third party cookies for web browsers specially Chrome and Edge?
Is it recommended to block third party cookies for web browsers specially Chrome and Edge? As we have below security recommendation for the same. What all would be impacted and how to measure it?
![](https://techprofile.blob.core.windows.net/images/wz4IyfazrUipeFkkEnpdcg.png?8D89B4)
edit severity forwarding/redirect rule from informational to High
Hiya, we have an information alert regarding forwarding/redirect rule. We are not firing emails off for informational else we would be swamped with emails. Is there a way to change this forwarding/redirect rule. to high rather than informational , or is…
Track change on DC with Defender for Identity?
We have 2016 Domain Controllers and Auditing is enabled. We are trying to configure/deny read permission, for members of a group, over the Domain Admins group in Active Directory. But something is removing that change after some time. I can find…
![](https://techprofile.blob.core.windows.net/images/aXuH7oYyEEiHuDJT798imw.png?8D9A0B)
ALERT: Password reuse activity on multiple endpoints
We have started receiving multiple Defender alerts from yesterday - 20th April early morning. "A user on this device is reusing the currently logged in account password on a different credential. Use new and complex password for each credential to…
![](https://techprofile.blob.core.windows.net/images/wz4IyfazrUipeFkkEnpdcg.png?8D89B4)
How to get defender for cloud plans activated for a long analytics workspace through powershell?
Hello everyone, I am trying to get the defender for cloud plans activated for a log analytics workspace through powershell, but there is no such command in powershell to get that. Can anyone help me with this would be highly appreciated. Thanks in…
![](https://techprofile.blob.core.windows.net/images/YR-6B_VTR0ODyuIJugBgGg.png?8DA7DF)
ALERT: Password reuse activity - Behaviour
Hi Everyone. Recently we receive a bunch of the next Alerts!: Password reuse activity that is triggered every 3 minutes on Microsoft 365 Defender. The question here is, if anyone known the behavior or parameters that this alerts use to trigger the…
![](https://techprofile.blob.core.windows.net/images/ooUMwICREUSzE54SLac52Q.png?8DA120)
![](https://techprofile.blob.core.windows.net/images/ooUMwICREUSzE54SLac52Q.png?8DA120)
What is Microsoft recommended secure score for m365 defender workloads includes MDO, MDE, MDI and MDCloudApps?
What is Microsoft recommended secure score for m365 defender workloads includes MDO, MDE, MDI and MDCloudApps? How to make sure everything is in place in terms of securing environment?
![](https://techprofile.blob.core.windows.net/images/VfQFAmOikEWfBHko2XlWTA.png?8D7F33)
Is there a Q&A tag for questions related to Defender's portal: security.microsoft.com?
Is there a tag for questions related to Defender's portal: security.microsoft.com? With features like Defender for Endpoint, Defender for Cloud Apps and more being centralized here it might be useful to track these questions using a tag.
![](https://techprofile.blob.core.windows.net/images/YR-6B_VTR0ODyuIJugBgGg.png?8DA7DF)
![](https://techprofile.blob.core.windows.net/images/iyN8gQFAAwAAAAAAAAAAAA.png?8DC6DB)
Logic app not getting triggered for malicious file upload.
I have created a logic app for detetcting malicious file upload with trigger being when an Azure Security Center Alert is created or triggered but whenever malicious file is uploaded it does not get triggered. I have checked for subscription/policy for…
![](https://techprofile.blob.core.windows.net/images/j_hATN6lWUGQqy8lwG64fA.png?8D869F)
Onboard Defender for Endpoint without AD
Hello Is it possible to onboard a Windows 10 machine to Defender for Endpoint that is not connected to Active Directory and not Azure AD Hybrid joined? Thanks
![](https://techprofile.blob.core.windows.net/images/aXuH7oYyEEiHuDJT798imw.png?8D9A0B)
After activating trial of Microsoft Defender for Office 365
Hello. Please i need your help on this issue. Since we activated trial of Microsoft Defender for Office 365 (Plan 2) for our tenant we cannot open link in Teams desktop app on Windows server 2016 (Citrix). Could you please tell me where to turn off…
Window's Defender Blocking Steam Game
I'm an indie game dev with my first video game on Steam. I used RPG Maker MV to create it, and I'm getting feedback from some players that Windows Defender is IDing it as a "false positive" and deleting files making it unplayable. …
microsoft laps 'Failed to load data. Please try again later.' error in microsoft 365 defender at secure score
Since a week or three I get an error in the microsoft secure score enviroment. 'Protect and manage local admin passwords with Microsoft LAPS' gives an error: failed to load data Please try again later. A week a three ago everything was working fine. I…