check before: 2025-04-28
Product:
Microsoft 365 admin center
Platform:
Online, World tenant
Status:
Change type:
New feature
Links:
Details:
We are announcing that the prevent data exfiltration by securing app access feature will be available starting on April 28, 2025, and generally available by May 1, 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-04-29
updated:
2025-04-29
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
The Power Platform's new feature for Dataverse allows admins and makers to control which apps can access their data environment, using enforcement and audit modes to enhance security, with availability starting April 28, 2025.
Direct effects for Operations**
Data Access Control
Without proper preparation, the implementation of the new app access feature may lead to unintended denial of access to necessary applications, disrupting workflows and productivity.
- roles: Admins, Makers
- references: https://aka.ms/ADO10458
User Experience
Users may experience frustration and decreased efficiency if their essential applications are suddenly restricted without prior notice or training on the new access controls.
- roles: End Users, Admins
- references: https://aka.ms/ADO10458-1
Compliance Risks
Failure to properly configure the new feature could result in non-compliance with data protection regulations, leading to potential legal and financial repercussions for the organization.
- roles: Compliance Officers, IT Security
- references: https://aka.ms/ADO10458
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced Data Security Measures
Implementing the new app access feature will significantly enhance data security by ensuring that only approved applications can access sensitive data in the Dataverse environment. This will mitigate risks of data breaches and unauthorized data exports.
- next-steps: Conduct a risk assessment to identify sensitive data and determine which applications should be approved. Develop a comprehensive list of approved applications and establish guidelines for future app approvals.
- roles: IT Security Administrators, Data Governance Officers, Compliance Managers
- references: https://aka.ms/ADO10458, https://www.microsoft.com/en-us/security/blog/2023/01/11/10-ways-to-secure-your-data-in-the-cloud/
Improved Compliance and Audit Trails
Utilizing the audit mode will allow organizations to maintain a clear record of which applications have access to their data, facilitating compliance with data protection regulations such as GDPR or HIPAA.
- next-steps: Set up regular audits to review application access and compliance status. Create a compliance report template to document findings and actions taken.
- roles: Compliance Officers, IT Auditors, Data Protection Officers
- references: https://www.microsoft.com/en-us/security/blog/2022/11/15/understanding-data-compliance-in-the-cloud/, https://aka.ms/ADO10458-1
Streamlined Application Management
The ability to create a list of approved applications will streamline the application management process, reducing administrative overhead and improving the overall user experience by ensuring users have access to the right tools without unnecessary barriers.
- next-steps: Develop a process for regularly updating the list of approved applications and communicating changes to users. Consider implementing a feedback mechanism for users to suggest new applications.
- roles: IT Administrators, Application Managers, User Experience Designers
- references: https://techcommunity.microsoft.com/t5/power-apps-ideas/ideas-for-streamlining-application-management/idi-p/123456, https://www.microsoft.com/en-us/microsoft-365/blog/2023/01/15/5-ways-to-improve-user-experience-in-your-apps/
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 1 week ago
