從連線應用程式匯入使用者群組Importing user groups from connected apps

適用於:Microsoft Cloud App SecurityApplies to: Microsoft Cloud App Security

當您使用 API 連接器連接應用程式時,Microsoft Cloud App Security 可讓您從 Office 365 及 Azure Active Directory 等等匯入使用者群組。When you connect apps using API connectors, Microsoft Cloud App Security enables you to import user groups, for example from Office 365 and Azure Active Directory. 使用者群組有兩種類型:There are two types of user groups:

  • 自動群組Automatic groups
    Microsoft Cloud App Security 預設會建立自動群組。Automatic groups are created by default by Microsoft Cloud App Security. 例如,有一個稱為外部的自動使用者群組,結合了來自組織外部且可以存取檔案,或已參與租用戶使用者活動之所有應用程式的所有使用者。For example, there's an automatic user group called External that combines all users from all apps who are external to your organization and have access to files or were in user activities in your tenant. Cloud App Security 中有下列自動群組:The following automatic groups exist in Cloud App Security:

    • 外部External
    • Dropbox 系統管理員Dropbox administrator
    • Office 365 系統管理員Office 365 administrator
    • G Suite 系統管理員G Suite administrator
    • Box 系統管理員Box administrator
    • 所有的 Salesforce 標準和自訂設定檔,例如 Salesforce 系統管理員。All Salesforce standard and custom profiles, for example, Salesforce System Administrator. 請參閱 這裡的完整清單。See the full list here.
  • 匯入的群組Imported groups
    您可以從連接的應用程式匯入任何群組。You can import any group from your connected apps. 例如,您可以從 Office 365 (Active Directory) 和其他連接的應用程式匯入使用者群組。For example, you can import user groups from Office 365 (Active Directory) and other connected apps. 這些群組可讓您查看特定群組來尋找組織中的威脅,不是查看整個組織或特定的使用者。These groups enable you to look for threats in your org, not by looking at the whole org or at a specific user, but by looking at a specific group.

    運用匯入使用者群組的一般案例包括:Typical scenarios that use imported user groups include:

    • 調查人力資源人員查看的文件Investigating which docs the HR people look at
    • 檢查主管群組中是否發生不尋常的情形Check if there's something unusual happening in the executive group
    • 了解管理群組中是否有人在美國境外執行活動。Find if someone from the admin group performed an activity outside the US.

如何匯入使用者群組How to import user groups

  1. 在功能表列中,按一下 [設定] 圖示 設定圖示 ,然後選取 [ 使用者群組]。In the menu bar, click the settings icon settings icon and select User groups.

  2. 按一下 [匯入使用者群組]****。Click Import user group.

    匯入使用者群組

  3. 選取要使用者群組匯入來源的應用程式。Select the app from which to import the user group. 應用程式清單是由您部署的應用程式連接器決定。The list of apps will depend on which App Connectors you deployed.

  4. 選取要匯入的群組。Select the group to import. 可用群組清單是應用程式本身中的所有現有使用者群組清單。The list of available groups will be a list of all the existing user groups in the app itself. 如果想要新增群組,您必須直接在應用程式本身上執行。If you want to add a new group, you have to do it directly in the app itself. 然後,當群組顯示在此處的清單中時加以選取。Then, when the group appears in the list here, select it.

  5. 視群組大小而定,匯入最多可能需要一小時。Depending on the size of the group, import can take up to an hour. 您可以選取在匯入程序完成時,透過電子郵件通知的選項。You can select the option to be notified by email when the import process is complete.

  6. 按一下 [匯入] 。Click Import. 匯入群組後,Cloud App Security 會自動同步處理群組成員,就像 Active Directory Connect 一樣。After you import a group, Cloud App Security automatically syncs the group members, just like Active Directory Connect.

  7. 匯入完成後,您可以在 [使用者群組]**** 頁面中按一下特定的群組,檢視所有群組成員的清單。After the import is complete, from the User groups page you can click on a specific group to view a list of all the members of the group. 按一下任何群組成員,進一步向下切入特定帳戶的詳細資料。Click on any member of the group to further drill down into the details of a specific account. 您可以檢視他們使用哪些應用程式及帳戶摘要,包括使用者及其活動圖表。You can view which apps they use and a summary of the account including graphs of the user and their activity.

匯入群組可讓您在調查活動記錄和建立原則時,選取這些群組作為篩選。Importing groups enables you to select those groups as filters when investigating in the Activity log and when creating policies.

注意

  • 在篩選器中使用匯入的使用者群組之前,可能會有短暫的延遲。There may be a short delay until imported user groups are available in filters.
  • 只有在匯入使用者群組後執行的活動,才會標記為使用者群組成員已執行。Only activities performed after importing a user group will be tagged as having been performed by a member of the user group.
  • 初始同步之後,群組會每隔一小時更新一次。After the initial sync, groups are updated every hour.

如需使用使用者群組篩選器的詳細資訊,請參閱活動For more information on using the User group filters, see Activities.

後續步驟Next steps

若您遇到任何問題,我們隨時提供協助。If you run into any problems, we're here to help. 若要取得產品問題的協助或支援,請建立支援票證To get assistance or support for your product issue, please open a support ticket.