General

Configure general settings for the following:

  • Enable or disable real-time scanning

  • Enable or disable RMS-protected file scanning

  • Specify the policy name

  • Specify the policy description

  • Specify the policy priority value

  • Select targets that the policy affects

Parent topic: Adding Advanced Threat Protection Policies

Configuring General Settings

  1. Select General.
  2. Optionally enable real-time scanning.

    See Real-time Scan.

  3. (Office 365 services only) Optionally enable scanning for encrypted files and email messages.

    • For SharePoint Online, OneDrive, and Microsoft Teams (Teams), turn on Enable RMS Protected File Scanning.

      This option only appears when you have provisioned an RMS account or a MIP account.

    • For Exchange Online email messages, turn on Enable MIP-Encrypted Email Scanning.

      This option only appears when you have provisioned an authorized account for Exchange Online, and have provisioned a MIP account without skipping Step 5 in Adding an MIP Account.

      Note:

      For MIP-encrypted email messages, Cloud App Security does not support Replace with text/file and Sanitize file. When either action is triggered, Cloud App Security applies Pass instead.

  4. (Exchange Online and Gmail only) Optionally select not to scan email messages in users' Junk Email folder for Exchange Online or users' Spam folder for Gmail during real-time and manual scanning.
  5. Specify a policy name and description.
  6. Specify the policy's priority value.
    Note:

    Priority is assigned numerically, with "1" being the highest priority. The lower the priority value, the higher the priority. Its value ranges from 1 to 99999.

  7. (Exchange Online Inline Mode only) Select Target Domains or Target Users / Groups.
  8. In the Available Targets area, select one or multiple targets, and then click the arrow button to add them to the Selected Targets area.
    Option Description

    Exchange Online

    Users and groups in your company's Active Directory infrastructure

    Exchange Online (Inline Mode)

    Domains or users/groups in your company's Active Directory infrastructure

    SharePoint Online

    SharePoint sites in your company

    OneDrive

    Users and groups in your company that have OneDrive sites

    Microsoft Teams

    Teams in your company

    Teams Chat

    Users and groups in your company's Active Directory infrastructure

    Box, Dropbox

    Users and groups in your company

    Google Drive

    Users and organization units in your company

    Gmail

    Users and groups in your company

    Salesforce

    For ATP policies:

    • Chatter, Community, Cases, and Attachments

    • Profiles in your company

    For DLP policies:

    • All packaged, standard, and custom objects

    • Profiles in your company

    Cloud App Security monitors update to the specified object records by the users that belong to the specified profiles.

    Click Click here to resynchronize the list if the target to add is not found.

    Note:

    You can select a policy configuration on the left navigation to continue with additional rules as necessary.