Microsoft Security and Netskope Integration Solution Guide

Microsoft Security and Netskope Integration Solution Guide

This Solution Guide covers the comprehensive integration between Netskope and Microsoft. Topics include the various integration points where Netskope and Microsoft exchange the necessary data and API commands to execute required workflows for security practitioners. Note that this document does not include information on how to configure Netskope to securely enable Microsoft applications, either with API Protection, Real-time protection with or without steering or SSL bypass for inspection (this does cover setting up SMTP-based email), or CSPM/SSPM settings.

Microsoft Defender Cloud Apps plugin for Log Shipper

This integration enables the transmission of events generated by Netskope to Microsoft Cloud App Security for further analysis and reporting.

Microsoft Defender Cloud Apps Plugin for Log Shipper

Microsoft Azure Sentinel Plugin for Log Shipper

Microsoft Azure Sentinel plugin for Log Shipper enables the ingestion of Netskope events and alerts into an Azure Sentinel tenant- Rephrase it some other way.

Microsoft Azure Sentinel Plugin for Log Shipper

Microsoft Azure Monitor Plugin for Log Shipper

Microsoft Azure Monitor Plugin for Log Shipper plugin allows you to send log data from Netskope Cloud Exchange to Azure Monitor.

Microsoft Azure Monitor Plugin for Log Shipper

Microsoft Azure Storage Plugin for Log Shipper

Microsoft Azure Cloud Storage plugin allows pushing the WebTx data and creating blobs inside the container in Azure Blob Storage.

Microsoft Azure Storage Plugin for Log Shipper

Microsoft Office 365 Endpoints Plugin for Threat Exchange

Microsoft Office 365 Endpoints Plugin for the Threat Exchange module in the Netskope Cloud Exchange platform is used to fetch URLs. Integrating this data into Cloud Exchange and a Netskope tenant allows for its automatic synchronization into web categories of our URL service. These categories are then utilized in SSL decryption policies, Real-time Protection policies, and SAML authentication bypass.

Microsoft Office 365 Endpoints Plugin for Threat Exchange

Microsoft Defender for Cloud Apps Plugin for Threat Exchange

Microsoft Defender for Cloud Apps allows for sharing of sanctioned URLs with Netskope Cloud Exchange and different other platforms. This allows you to leverage the threat intelligence to better protect your organization from cyberattacks.

Microsoft Defender for Cloud Apps Plugin for Threat Exchange

Microsoft Defender for Endpoint Plugin for Threat Exchange

Microsoft Defender ATP plugin integration with the Threat Exchange module of the Netskope Cloud Exchange platform allows for sharing of file hashes with Netskope. This allows you to leverage the threat intelligence to better protect your organization from cyberattacks.

Microsoft Defender for Endpoint Plugin for Threat Exchange

Azure AD Plugin for User Risk Exchange

Azure AD plugin for User Risk Exchange in the Netskope Cloud Exchange platform integration enables seeing multiple connected systems’ risk values for individual users and groups. The Microsoft Azure AD Risk Exchange plugin fetches users and their respective score and perform actions on them. Supported record types include Users.when users’ risk scores change, so that you can quickly respond to any potential threats.

Azure AD Plugin for User Risk Exchange

Microsoft Teams Plugin for Ticket Orchestrator

Microsoft Teams integration with the Ticket Orchestrator module of the Netskope Cloud Exchange platform allows you to send the generated alerts from different integration to Microsoft Teams with the required details.

Microsoft Teams Plugin for Ticket Orchestrator

Netskope SSO with Azure AD

Netskope SSO with Microsoft is a simple and effective way to improve the security, efficiency, and manageability of your Netskope environment. By integrating Netskope with Microsoft, you can centralize user management and provide your users with a seamless login experience.

Netskope SSO with Azure AD

Cloud Exchange SSO with Azure AD

Cloud Exchange SSO with Microsoft is a simple and effective way to improve the security, efficiency, and manageability of your Cloud Exchange environment. By integrating Cloud Exchange with Microsoft, you can centralize user management and provide your users with a seamless login experience.

Cloud Exchange SSO with Azure AD

Netskope Azure CSPM

Netskope Azure CSPM is a cloud security posture management (CSPM) solution that helps organizations improve their security posture in Microsoft Azure. It provides continuous visibility into Azure resources and configuration, and helps organizations identify and remediate security risks.

Netskope Azure CSPM

Netskope SMTP Proxy with Microsoft O365 Exchange

Netskope SMTP Proxy with Microsoft O365 Exchange is a solution that allows organizations to scan and filter outbound email traffic before it reaches Microsoft Exchange. This can help to protect organizations from data breaches, malware infections, and other email security threats.

Netskope SMTP Proxy with Microsoft O365 Exchange

Microsoft and Netskope SSE Coexistence

Using both Microsoft and Netskope SSE solutions in tandem can provide a comprehensive and layered approach to securing an organization’s network, data, and cloud applications. Organizations can benefit from a more holistic and adaptive security approach.

Microsoft and Netskope SSE Coexistence

Netskope API Data Protection for Microsoft Office 365 Outlook

Using Netskope API Data Protection for your Microsoft Office 365 Outlook app helps organizations protect their sensitive data in Outlook. It uses APIs to scan Outlook emails and attachments for policy violations, such as the presence of sensitive data or the sharing of data with unauthorized individuals.

Netskope API Data Protection for Microsoft Office 365 Outlook

Netskope Next Generation API Data Protection for Microsoft 365 OneDrive

Netskope Next Generation API Data Protection for Microsoft 365 OneDrive helps organizations protect their sensitive data in OneDrive. It uses APIs to scan OneDrive files for policy violations, such as the presence of sensitive data or the sharing of data with unauthorized individuals.

Netskope Next Generation API Data Protection for Microsoft 365 OneDrive

Netskope Next Generation API Data Protection for Microsoft 365 Sharepoint

Netskope Next Generation API Data Protection for Microsoft 365 Sharepoint helps organizations protect their sensitive data in OneDrive. It uses APIs to scan OneDrive files for policy violations, such as the presence of sensitive data or the sharing of data with unauthorized individuals.

Netskope Next Generation API Data Protection for Microsoft 365 Sharepoint

Netskope Next Generation API Data Protection for Microsoft 365 Teams

Netskope Next Generation API Data Protection for Microsoft 365 Teams helps organizations protect their sensitive data in Teams. It uses APIs to scan Teams messages and attachments for policy violations, such as the presence of sensitive data or the sharing of data with unauthorized individuals

Netskope Next Generation API Data Protection for Microsoft 365 Teams

Netskope Next Generation API Data Protection for Microsoft 365 Yammer

Netskope Next Generation API Data Protection for Microsoft 365 Yammer helps organizations protect their sensitive data in Yammer. It uses APIs to scan Yammer messages, post and attachments for policy violations, such as the presence of sensitive data or the sharing of data with unauthorized individuals

Netskope Next Generation API Data Protection for Microsoft 365 Yammer

Share this Doc

Microsoft Security and Netskope Integration Solution Guide

Or copy link

In this topic ...