Office 365 App Protection policies
Once you register Ivanti EPMM as an Azure app you can add and manage Office 365 App Protection policies in the Microsoft Azure cloud for Office 365 apps.
This section includes the following topics:
- Adding Office 365 App Protection policies
- Editing Office 365 App Protection policies
- Managing Office 365 App Protection policies
- Add Office 365 App Protection policies window
Before using this feature, complete the prerequisites described in the following section: Prerequisites for using Office 365 App Protection.
- Office 365 App Protection overview
- Office 365 App Protection configurations
- Office 365 App Protection user groups
- Office 365 App Protection reports
- Office 365 App Protection settings
Adding Office 365 App Protection policies
Policies use data populated from Azure Active Directory during real-time syncs.
Procedure
- Log into the Admin Portal.
- Go to Services > Microsoft Graph > Policies > Add.
-
Complete the App protection policies form.
Refer to Add Office 365 App Protection policies window for details.
- In the Compliance Actions section, select a Setting, enter the value, and select an Action. Refer to the App protection policies fields table.
- Select +Add to configure additional compliance actions.
- Select Save to add the policy to the list of DLP policies on the Policies table.
Editing Office 365 App Protection policies
Policies use data populated from Azure Active Directory during real-time syncs.
Procedure
- Log into the Admin Portal.
- Go to Services > Microsoft Graph > Policies.
- Select the name of a policy you want to edit.
-
Complete the App protection policies form.
Refer to Add Office 365 App Protection policies window for details.
- In the Compliance Actions section, select a Setting, enter the value, and select an Action. Refer to the App protection policies fields table.
- Select +Add to configure additional compliance actions.
- Select Save to save the policy edits.
Managing Office 365 App Protection policies
You can take any of the following actions on each Office 365 App Protection policy:
- Assign User Groups
- Assign Apps
- Delete Policies
Procedure
- Log into the Admin Portal.
- Go to Services > Microsoft Graph > Policies.
- Locate a policy you want to manage and go to the Actions column.
- Assign user groups to the App Protection policy.
- Select the Assign User Groups icon.
- Search for user groups.
- Select one or more user groups to add to the policy.
- Select Save.
- Assign Office 365 apps to the app protection policy.
- Select the Assign Apps icon.
- Search for apps.
- Select one or more apps to add to the policy.
- Select Save.
- Delete an Office 365 App Protection policy.
- Select the Delete Policy icon.
- Select Yes to confirm deletion of the policy.
The Office 365 App Protection policies take affect:
- After assigning the policy to a user group.
- A user from the assigned user group logs into an Office 365 app using AAD credentials.
Add Office 365 App Protection policies window
Access this window by logging into the Admin Portal and selecting Services > Microsoft Graph > Policy and selecting Add or selecting a policy to edit.
The following table summarizes fields and descriptions in the Add App Policies window. Also, refer to the App protection policies fields table.
Compliance Actions
Use the Compliance Actions Settings to set the security requirements for your access protection policy. Several settings are provided with pre-configured values and actions.
Procedure
- Select a Setting, enter the value, and select an Action. Refer to the table below.
- Select +Add to configure additional compliance actions.
- At the top of the Policies tab, select Save.