※ | The Microsoft Intune license is required for device-based access control. |
Office 365 provides a convenient and secure way for you to share your emails, schedules, and files with your colleagues.
User authentication, devices, applications, and data are properly managed and protected for enhanced security
Because the authentication base is provided as a cloud service, you can authenticate from anywhere.
Access business applications in a secure environment from any device, whether in or outside the office.
You can use the same authentication method for a variety of applications provided by Office 365.
Since you no longer have to manage the ID and password per application, you can reduce the risk of loss of IDs and passwords.
Configure multi-factor authentication and conditional access settings per user.
Realize access controls that meet the needs of the situation, such as a more robust authentication method for use from outside the office or use by subcontractors.
※ | The Microsoft Intune license is required for device-based access control. |
Device management can be unified under the same policies regardless of device OS and usage location.
Policies can be used to apply appropriate security settings to mobile devices.
Features for locking devices and deleting data remotely are also available, enabling you to prevent the theft of data on the device.
Perform application deployment for registered devices all at once and control extraction of data to non-business applications by protecting application data.
※ | An Azure Active Directory Premium license is required for device-based access control. |
File content is evaluated based on policies defined by the administrator, and encryption can be set to be applied automatically.
Access permissions are set per file category, enabling you to share files among internal and external users within the scope of intended permissions.
Track access to files, and if cases of unauthorized access are found, you can revoke access permissions, preventing unauthorized take-out, loss, and theft of internal data.
※ | An Azure Information Protection Premium P2 license is required for the automatic labeling function. |
※ | The Azure Information Protection Viewer is required for external users to open encrypted files. |
On-premise solution that detects attacks on credentials and unauthorized behavior to prevent serious damage.
This solution monitors the actions and behaviors of Active Directory users. If an abnormal action or behavior related to credentials is detected, the organization administrator is informed of such fact.
An Azure service that detects attacks aimed at credentials on an on-premise Active Directory.
Unlike ATA, use of this service enables you to manage the management server on the cloud.
The cloud application environment is protected by three features: Cloud Discovery, App Connector, and Proxy Protection.
In addition to monitoring the abnormal behavior of cloud applications and user activities, you can manage user login and activities.
What is the best solution for your problem?
Please consult a KDDI consultant.