Are you wondering how to satisfy the recommended Create an OAuth app policy to notify you about new OAuth applications policy in the Microsoft Secure Score section?
Read below on how to create this policy to get 4 points added to your secure score!!
As most of you have found out Microsoft does NOT give you a link to a document on how to implement this policy, they just send you to a page talking about the OAuth App Policies and how to Investigate and remediate risky OAuth apps. Those don’t tell you what you need to know and the steps listed are just generic steps! Not helpful!
To get started you can click on the OAuth app policy link shown in the action page or by clicking on Policies and then Policy management from the Microsoft Defender page under the Cloud Apps section.
Click on the Create Policy button and then click on OAuth app policy
The policy name can be anything you’d like but should be something so you know what it was created for, I kept mine simple with Notification on new application
Move down to the Create filters for the policy section and click the add filter button. Click on the Select filter button and pick App state make sure the next box says equals and then pick Undetermined for the final box.
Move down to the Alerts section. Put a checkmark next to Create an alert for each matching event with the policy’s severity. Then put a checkmark for Send alert as email, fill in your email address (make sure you press enter or click the email address listed below so it will save it in the box)
Then click Save at bottom!!
The following day when the policy checks are done the action plan for Create an OAuth app policy to notify you about new OAuth applications will be satisfied and you will gain 4 points on your secure score!
Thank you. I was wondering how to satisfy this OAuth app policy requirement per Secure Score.
You are welcome, that’s why I started this site!