Forum Discussion
Blocking file uploads to all sites, unless safelisted
We're trying to verify if we can block file uploads through the browser to all sites, unless these sites are part of an approved list or the user has an exception. We currently have a similar solutio...
Evaluate Defender for Cloud Apps, formerly MCAS.
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/block-access-to-unsanctioned-apps-with-microsoft-defender-atp/ba-p/1121179
Session policy as well as sanctioned/unsanctioned apps comes to mind. Also DLP auto labeling auto encrypt all files to a basic internal label. Users would have to authenticate with their AAD credentials to verify yes/no they have access to permissions on file for encryption.
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/block-access-to-unsanctioned-apps-with-microsoft-defender-atp/ba-p/1121179
Session policy as well as sanctioned/unsanctioned apps comes to mind. Also DLP auto labeling auto encrypt all files to a basic internal label. Users would have to authenticate with their AAD credentials to verify yes/no they have access to permissions on file for encryption.
WilliamLeininger , thanks for this. I wouldn't want to classify/label documents. The endpoint should catch that the user is uploading files to a blocked website and prevent the action.
