Third-party plugins enable users to extend the capabilities of a SaaS app, but can be a security risk to your organization. When a user adds a plugin, the user might inadvertently grant the plugin access to sensitive data. A plugin with privileged access might be exploited to exfiltrate data or otherwise harm your organization.

To help you address the threats posed by third-party plugins, SSPM gives you visibility into the third-party plugins that are being used in your organization. You can then take action by approving the plugin or by revoking user access to it.

SSPM provides third-party plugin scans for the following SaaS apps:

For certain discovered applications, SaaS Security Inline can detect the specific application tenants that are being accessed by users. SaaS Security Inline leverages this capability to provide you with visibility and control at the tenant level for the supported applications. This capability is now extended to support Azure OpenAI applications. For Azure OpenAI applications, you can now submit policy rule recommendations at the tenant level. The policies, if committed on the firewall, will affect only the application tenants identified in the policy recommendation.

Users can now check onboarding status that validates if the connector has onboarded successfully and fetched sample assets and user activities. Failures are reported with appropriate errors so that quick actions can be taken reducing troubleshooting time significantly. These validations are launched for the Slack Enterprise V2 connector.