An authorized account is an email address that is associated with an administrator. Through this account, Cloud App Security is granted the ability to access a cloud application.
With the OAuth authorization framework, Cloud App Security obtains limited access to the cloud application on administrators' behalf without requiring their passwords. OAuth is an open authorization standard used to provide secure client application access to server resources. Cloud App Security only uses OAuth 2.0 for authentication.
Cloud App Security uses access tokens to:
Access user accounts designated for protection and "listens" for users uploading, creating, or modifying files
Access mailbox accounts designated for protection and “listens” for arriving email messages