About the New Console


This is a "Pre-release" feature and is not considered an official release. Please review the Pre-release Disclaimer before using the feature.

Cloud App Security launches a revamped dark-theme management console. The new console provides enhanced security and better performance.

You can access the new console from the current Cloud App Security console by hovering over the logon user name at the upper-right corner and clicking New Console. Make sure you use the latest version of Google Chrome, Mozilla Firefox, or Microsoft Edge to access the new console.


The new console does not support Microsoft Internet Explorer.

Cloud App Security launches the new console step by step. The features available on the new console are as follows:


The settings on the new console are independent from those on the old console.



Dashboard screen

  • Service Status tab: Displays the provisioning status and policy configuration status of the services.

    You can perform the following operations for the services:

    • Start protecting a service by clicking Provision.

      You can also view the status of the ongoing provisioning.

    • Deploy security policies for a service with no policy enabled after provisioning by clicking Configure Policy.

    • Assess whether security policies are properly configured for a service by clicking Assess Configuration Health

  • Threat Detection tab: Displays the threats detected in your network.

  • Risky User Detection tab: Displays the top risky users and user risk trends in your organization.

  • Configuration Health tab: Assesses your configuration and provides suggestions for optimized service protection.

    The widget currently available is Protection Feature Adoption.

Policies screen

Views and manages Cloud App Security policies and global settings.


In this release, you can only view and manage Advanced Threat Protection policies and global settings for Exchange Online, Exchange Online (Inline Mode), and Gmail. Moreover, manual scan is not available.

Available global settings are as follows:

  • User-Defined Lists

    • Approved/Blocked Lists
    • High Profile List
    • Internal Domain List
    • Predictive Machine Learning Exception List
    • Display Name Spoofing Detection Exception List
  • Other Settings

    • Notification Settings

    • Suspicious Object Settings

    • Time-of-Click Protection Settings

    • Attachment Password Guessing

In Notification Settings, you can configure the recipients for receiving policy violation notifications and system-level notifications in a centralized way. For details, see Configuring Recipient Groups.

Logs screen

Queries and views log information about threat detections, email tracking, quarantine and more.

  • Perform a search: Select a log type, specify criteria, and click Search to search for logs. For details, see Searching Logs.

  • View query history: Click View History to view a list of recent queries. Click or at the end of a query to view the query result in the current console or a new browser tab.

  • Manage columns:

    • Sort the logs in ascending or descending order by clicking a table header.

    • Hide a column by hovering over a table header, clicking the vertical ellipsis icon, and clicking Hide Column.

    • Select the columns to display and reorder the columns by clicking Manage Columns.

  • Export logs: Click Export to export the current view or all logs.

    You can export a maximum of 10,000 logs at a time.

Quarantine screen

Manages the emails, files, chat messages, and object records quarantined by Cloud App Security.

  • Perform a search: Select a service, specify criteria, and click Search to search for quarantined items.

  • Restore a quarantined item: Select an item and click Restore.

    This action releases the item from the quarantine.

  • Delete a quarantined item: Select an item and click Delete.

    Deleted items cannot be restored.

  • Download a quarantined item: Select an item and click Download.

  • Select all quarantined items: When more than 100 items are available, to select all items, select an item first and then click the Select All button.

Reports screen

Generates and views one-time and scheduled reports.

Reports are generated using the Threat Detection template that summarizes threat detection in your services by threat type.

  • Generated Reports: Views all previously generated reports and status information, and downloads and deletes reports.

  • Scheduled Reports: Creates, views, edits, and deletes the schedules for scheduled reports.

  • One-Time Reports: Creates a one-time report.

For more information about generating scheduled and one-time reports, see Configuring Reports.

Language settings

Sets a language for the new console by hovering over the profile icon at the upper-right corner and clicking Language Settings.

Time zone settings

Sets a time zone for the new console by hovering over the time at the upper-right corner and clicking Console Settings.


All data on the management console follows the specified time zone.

Role name display

Views the role name of the current logon user by hovering over the profile icon at the upper-right corner. The role name is under the logon user name.


For a CLP or LMP account, the role name is Super administrator.

Back to old console

Exits the new console and goes back to the old console by hovering over the profile icon at the upper-right corner and clicking Back to Old Console.