How Defender for Cloud Apps helps protect your Smartsheet
Article
As a productivity and collaboration cloud solution, Smartsheet holds sensitive information to your organization. Any abuse of Smartsheet by a malicious actor or any human error may expose your most critical assets and services to potential attacks.
Connecting Smartsheet to Defender for Cloud Apps gives you improved insights into your Smartsheet activities and provides threat detection for anomalous behavior.
Main threats
Compromised accounts and insider threats
Data leakage
Insufficient security awareness
Unmanaged bring your own device (BYOD)
How Defender for Cloud Apps helps to protect your environment
Connect Smartsheet to Microsoft Defender for Cloud Apps
This section describes how to connect Microsoft Defender for Cloud Apps to your existing Smartsheet via the App Connector APIs. The resulting connection gives you visibility into and control over your organization's use of Smartsheet.
Prerequisites
The Smartsheet user used to log in to Smartsheet must be a System Admin.
Event Reporting must be enabled by Smartsheet, either through standalone purchase or via an Enterprise plan with the Advance Platinum package.
Configure Smartsheet
Note
The Smartsheet license must be an Enterprise plan with the Platinum package.
Smartsheet accounts hosted in the EU region (the .eu domain suffix) aren't currently supported.
Register to add Developer Tools to your existing Smartsheet account:
For US Government GCC customers, enter the following value: https://portal.cloudappsecuritygov.com/api/oauth/saga
For US Government GCC High customers, enter the following value: https://portal.cloudappsecurity.us/api/oauth/saga
Publish App?: Select.
Logo: Leave blank.
Select Save. Copy the App client id and the App secret that are generated. You'll need them in the following steps.
Configure Defender for Cloud Apps
Note
The Smartsheet user configuring the integration must always remain a Smartsheet admin, even after the connector is installed.
In the Microsoft Defender Portal, select Settings. Then choose Cloud Apps. Under Connected apps, select App Connectors.
On the App connectors tab, select +Connect an app, and then select Smartsheet.
In the next window, give the connector a descriptive name, and then select Next.
On the Enter details screen, enter these values and select Next:
Client ID: The app client ID that you saved earlier.
Client Secret: The app secret that you saved earlier.
On the External Link page, select Connect Smartsheet.
In the Microsoft Defender Portal, select Settings. Then choose Cloud Apps. Under Connected apps, select App Connectors. Make sure the status of the connected App Connector is Connected.
The first connection can take up to four hours to get all users and their activities in the seven days before the connection.
After the connector's Status is marked as Connected, the connector is live and works.
Rate limits and limitations
The default rate limit is 300 requests per minute. For more information, see the Smartsheet documentation.
Limitations include:
Log in and log out activities aren't supported by Smartsheet.
Smartsheet activities don't contain IP addresses.
System activities are shown with the Smartsheet account name.
Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) that operates on multiple clouds. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services. Learn how to use Defender for Cloud Apps in your organization.