fbpx
Back Arrow Back to All Integrations

Microsoft Cloud App Security

Microsoft Cloud App Security

Cloud SIEM for Microsoft Cloud App Security

Microsoft Cloud App Security is a multimode cloud access security broker (CASB). It provides visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your Microsoft cloud services.

Blumira integrates with Microsoft Cloud App Security to stream Microsoft cloud security event logs and alerts to the Blumira service for threat detection and actionable response.

 

Get a Free Cloud SIEM Trial

Try out Blumira’s automated detection & response platform for free and deploy a cloud SIEM in hours.

 

Free Trial

Configuring Microsoft Cloud App Security

To send Microsoft Cloud App Security logs to Blumira, follow these steps:

  1. Go to https://portal.cloudappsecurity.com/ and log in.
  2. In the settings (gear icon) menu, select Security Extensions.
  3. Ensure the “API Tokens” tab is selected.
  4. Click “+” icon to add a new token.
  5. Enter a name, such as “Blumira Sensor”.
  6. Make a note of the token and also the URL as you will need this later.

On the Blumira side, configuration is now easy:

  1. Log in to app.blumira.com
  2. Go to Infrastructure / Sensors
  3. Click on the sensor where you want to poll for MS Cloud App Security logs.
  4. Scroll down to the Modules section and click Add Module.
    Choose MS Cloud App Security Module.
  5. Enter in the parameters you noted down while configuring MS Cloud App Security.
  6. Click Install.

Get a Free Cloud SIEM Trial

Try out Blumira’s automated detection & response platform for free and deploy a cloud SIEM in hours.

Free Trial