ビュー:
Cloud App Securityによって、次のサービスが保護されます。
  • Exchange Online、SharePoint Online、OneDrive、およびMicrosoft Teamsを含む、Microsoft 365サービス
  • GoogleドライブおよびGmailを含むGoogle Workspace
  • BoxおよびDropboxを含む、クラウドストレージアプリケーション
  • CRMプラットフォーム (Salesforce)
保護するアプリケーションおよびサービスとCloud App Securityを統合するには、サービスアカウントが必要です。サービスアカウントは次のとおり分類されます。
  • Exchange Online、SharePoint Online、およびOneDriveを統合するためのデリゲート アカウント
  • Exchange Online、SharePoint Online、OneDrive、Microsoft Teams(Teams and Chat)、Box、Dropbox、Google Drive、Gmail、Salesforce と統合するための承認されたアカウント
Cloud App Securityで、[運用管理][サービスアカウント] の順に選択し、[追加] をクリックして、サービスへのアクセス権を付与する必要がある組織の上にマウスを重ね、右側に表示されたリストからサービスを選択します。
注意
注意
組織内のサービスへのアクセス権をCloud App Securityに付与している場合、Cloud App Securityのリストで、再度選択されないように灰色で表示されます。
組織に Microsoft 365 サービスへのアクセス権を Cloud App Security に付与した後、組織に関連付けられた Microsoft テナント名を表示できます。
注意
注意
Trend Vision Oneを導入している場合、[Trend Vision One][Third Party Integration][Microsoft Entra ID]でテナントを追加するときに、Cloud App Securityは、サービスへのアクセス権をCloud App Securityに付与していない組織とテナントを自動的に関連付けます。そのような組織がない場合、Cloud App Securityは組織を作成してテナントと関連付けます。
関連情報

!!Re-creating an access token for Microsoft 365 services and Gmail!!

!!If the access token becomes invalid for any reason or you need to refresh the existing token, re-create an access token to continue using the service account.!!
!!The following procedure uses Exchange Online as an example to outline how to re-create an access token in the management console.!!
注意
注意
  • !!For Gmail and Gmail (Inline Mode), provide an administrator account in the same domain as the one used during access grant to ensure successful re-creation of the access token.!!

手順

  1. !!Click Recreate Access Token under Status of the Exchange Online service account.!!
  2. !!On the Recreate Access Token for Exchange Online Service Account screen that appears, click Grant Permission, specify your Microsoft 365 Global Administrator credentials to sign in if prompted, and then click Accept on the screen that appears.!!
  3. !!Go back to the management console as instructed and verify that a checkmark icon appears for the step, indicating that the access token and the service account are valid.!!
  4. !!Click Close.!!

!!Re-creating an access token for Box, Dropbox, and Google Drive!!

!!If the access token becomes invalid for any reason or you need to refresh the existing token, re-create an access token to continue using the service account.!!
!!The following procedure uses Box as an example to outline how to re-create an access token in the management console.!!

手順

  1. !!Click Recreate Access Token under Status of the Box service account.!!
  2. !!In the Recreate Access Token for Box Service Account screen that appears, select to use the current Box administrator or a different Box administrator.!!
    重要
    重要
    !!It is highly recommended to select the current administrator used for creating the Box service account. Changing administrators may result in the inability to access and recover files quarantined in the current administrator's quarantine folder, potentially leading to data loss.!!
  3. !!If you need to use a different administrator, decide how you want to handle the existing quarantined files:!!
    • !!By the current administrator: Restore or delete all these files before granting permission in the screen.!!
    • !!By the new administrator: Perform the following steps to transfer these files from the current administrator’s quarantine folder to the new administrator’s folder:!!
      1. !!Sign in to the Box admin console as the current administrator.!!
      2. !!Access the root directory, locate the quarantine folder trendmicro_cas_quarantine__dont_change_or_delete, rename the folder, and share it with the new administrator.!!
      3. !!Locate the temporary folder trendmicro_cas_temp__dont_change_or_delete, ensure that there are no files in the folder, and then unshare and delete the folder from the root directory.!!
        注意
        注意
        !!If there are files in the temporary folder, use the Move function to transfer the files to the renamed quarantine folder first.!!
      4. !!Sign in to the Box admin console as the new administrator.!!
      5. !!Navigate to the shared folder and use the Move function to transfer all quarantined files to the new administrator's quarantine folder trendmicro_cas_quarantine__dont_change_or_delete, which is under the root directory. This ensures the preservation of file integrity and maintains their accessibility.!!
        注意
        注意
        !!If you cannot find the folder with the specified name, create it manually.!!
  4. !!Go back to the management console and open the Recreate Access Token for Box Service Account screen.!!
  5. !!Click Grant Permission, specify your Box administrator credentials to sign in if prompted, and then click Accept in the screen that appears.!!
  6. !!Go back to the management console as instructed and verify that a checkmark icon appears for the step, indicating that the access token and the service account are valid.!!
  7. !!Click Close.!!