Remediate Third-Party Apps

You can view and assess third-party apps to determine if the potential security threats are real and, if so, you can Block or Restrict them and send notifications to users. In some cases you may determine that an identified app does not pose a real threat and can Approve it. Use the following workflow to drill down into an app and assess whether it poses a security threat.
  1. Select Explore > Third-Party apps. By default, all discoveries are listed as Unclassified until they are assessed by the admin. You may Approve or Block any third-party app in the list view or click an app in the Name column to view the details and then Approve, Block, or Restrict the app.
  2. You can filter third-party apps associated with a particular end user by clicking (ExplorePeople).
  3. Drill down into the details by clicking Name. This detailed view displays the metadata of the third-party app and the associated links and cloud apps so that you can get more context around them.
  4. After you understand the details, you can apply remediation. There are several ways to remediate:
    1. To remediate one or more results, select the log entry and click Actions, and then click either Allow or Block.
    2. To filter the users accessing a specific third-party app and apply remediation, click Name on the log entry and then Manage User Permissions, select All, Inactive, or Active.
    3. To filter the results by third-party app status, select Approved, Restricted, Blocked, or Unclassified.
      When an app is either blocked or restricted, the user is sent an email to notify them of their access status.
    • Approved the third-party app is accessible by all users.
    • Restricted the third-party app is accessible for certain users you define, and blocked for all other users.
    • Blocked all users are blocked access to the third-party app.
    • Unclassified the admin has not assessed the third-party app.
    (Optional)To download a spreadsheet of the third-party list for closer inspection, click csv-export.png .

Related Documentation