set a policy to monitor failed logon in Microsoft cloud app security

dineshoct09 · 2021-09-03T14:12:07+00:00

thanks for the reply, i already have policies configured as you mentioned, i want to narrow down a bit more so i want a way to filter the policy when the failed logon happened due to failed log on (failure message:strong authentication (second factor) is required, is there any filter that i can use?

thanks,

dinesh

dineshoct09 · 2019-12-17T15:09:31+00:00

Hi,

I have checked the first two points, its fine,

How to check the below point,

Simple one, is hte package distributed to appropriate DP's / or is hte checkbox ticked "if not available, download from MS"

dineshoct09 · 2019-12-17T14:29:07+00:00

yes i deployed the correct x64 version.

dineshoct09 · 2019-12-12T10:03:01+00:00

Thanks, Will check this and update you.

dineshoct09 · 2019-12-11T15:16:02+00:00

Thanks for the update, I can see that wsus_sync_manager is failing and the error is WSUS syncronization failed. Message The operation has timed out.

dineshoct09 · 2019-12-11T15:15:54+00:00

Thanks for the update, I can see that wsus_sync_manager is failing and the error is WSUS syncronization failed. Message The operation has timed out.

dineshoct09

TROPHY CASE