Capture and Monitor Access Activities of Cloud App
Question
This is part of a question set of 2 questions: You are a global administrator in a company with an Azure P1 subscription.
Your company has purchased several cloud apps provided by 3rd party vendors.
Too gain more knowledge about the usage of one of the cloud apps, you would like to capture and monitor the access activities of the app in real time.
First you create a new App Registration in Azure Active Directory, and register the mentioned app.
What should you configure next?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer: B
You should create a conditional access policy from Azure AD admin center.
You need to route your applications sessions to Cloud App Security by creating a conditional access policy.
From Cloud App Security you can configure real time monitoring of access activities.
The policy should contain at least these settings:
Users and groups: add the users that will be onboarding the app
Cloud apps: Add your application(s)
Session: Select “Use Conditional Access App Control” and set it to “Monitor only”
/answer/imgckeditor_11.png)
Option A is incorrect.
Creating an Enterprise Application is not a part of this solution.
You need toroute your applications sessions to Cloud App Security.
Option C is incorrect.
Creating an app configuration policy will not enable you to route your applications sessions to Cloud App Security.
Option D is incorrect.
Creating an app protection policy will not enable you to route your applications sessions to Cloud App Security.
To know more about conditional access app control, please refer to the link below:
After creating a new App Registration in Azure Active Directory and registering the mentioned app, the next step to capture and monitor the access activities of the app in real time is to create an Enterprise Application in the Azure Active Directory admin center. Therefore, the correct answer is A.
An Enterprise Application in Azure AD represents an application that your organization uses and has control over. By creating an Enterprise Application, you establish a trust relationship between your organization and the app, and can configure settings to manage access and security for the app.
Once you have created an Enterprise Application, you can use Azure AD monitoring capabilities, such as Azure AD Sign-ins and Azure AD audit logs, to capture and monitor the access activities of the app in real time. You can also configure conditional access policies to enforce access policies based on user, device, and location conditions.
Option B, creating a conditional access policy, is not the correct answer in this scenario because it is used to control access to cloud apps based on certain conditions, such as user group membership, location, device state, and risk level. It does not involve capturing and monitoring access activities of an app in real time.
Option C, creating an app configuration policy in the Endpoint Management admin center, is not relevant to the scenario because it is used to configure settings for mobile apps and devices, such as email and Wi-Fi profiles, security policies, and app restrictions.
Option D, adding an app protection policy in the Endpoint Management admin center, is not relevant to the scenario because it is used to control data sharing and protection for mobile apps on enrolled devices.
