Microsoft Cloud App Security Log Collector

Microsoft cloud app security technical documentationy.

Microsoft cloud app security log collector.

For syslog the log collector writes the received logs to the disk. Today we ll cover how to ingest logs directly from your firewalls into the cloud app security log collector which is then sent to the cas service. A single log collector can handle multiple data sources. Access app control and the log collector.

Microsoft today announced that some insecure cipher suites currently supported by microsoft cloud app security mcas will be removed later this year. The current implementation only accepts url logs as stated above. Deploy a log collector for continuous monitoring. Cloud app security admin portal.

Before you enable cloud discovery you ll need to set up your microsoft cloud app security portal. Microsoft cloud app security. Adding sanctioned apps in cloud app security. Ftp logs are uploaded to microsoft cloud app security after the file finished the ftp transfer to the log collector.

Once completed you forward your logs to this server on udp 514 and the logs will start flowing into your cloud app security portal. This capability lets you monitor cloud app usage within your network. First we ll want to go to cloud discovery settings and upload. Introduction to microsoft cloud app security.

Each log is automatically processed compressed and transmitted to the portal. Log collector size of upload logs to mcas portal. If you selected syslog this information includes information about which port the syslog listener is listening on. Copy the contents of the screen because you will use it when you configure the log collector to communicate with cloud app security.

You will have to deploy a cloud discovery server on prem or in azure. Microsoft cloud app security blog. Auto suggest helps you quickly narrow down your search results by suggesting possible matches as you type. Microsoft cloud app security overview video.

The log collector runs on your network and receives logs over syslog or ftp. Microsoft cloud app security is powered by native integrations with industry leading security and identity solutions including azure active directory intune and azure information protection as well as any other solutions you want to leverage.