Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Introduction

This article outlines how to try the following solutions for MS Teams

  • Ethical Wall

  • DLP

  • eDiscovery

Login to Admin Portal using any of the users in table below

Admin Portal: https://MSTeamsProxy.agatdemo.com

Users:

User name

Password

Role

AD Group

Alice@agat.place

Software!23

user

Researchers

Bob@agat.place

Software!23

user

Investors

jim@agat.place

Software!23

user

IT

david@agat.place

Software!23

user

HR

alex@agat.place

Software!23

user

Management

How to connect to the demo machines

In order for the solution to work, the end user must configure a PAC file and install a certificate on their device.

To simplify the demonstration, AGAT has prepared preconfigured, end-user machines (with PAC and certificate). There is also the MS Teams App installed. Test users are already signed-in.

Connecting to the machines can be done using RDP.

Please find below the machine details:

Machine 1

IP - 3.229.131.214 :

User

Machine Password

MS Teams User

MS Teams Password

TeamsDemo1

Software!23

Alice@agat.place

Software!23

Machine 2

IP - 35.171.109.194

User

Machine Password

Webex User

Webex Password

TeamsDemo1

Software!23

bob@agat.place

Software!23

Ethical Wall :

You can see the preconfigured Ethical Wall Policies, for both two-participant conversation and multi-participant conversation here - https://msteamsproxy.agatdemo.com/admin/federationpolicy

Please do not change the Ethical Wall Policies

the Policies are set to -

  • Block communication completely between Researchers and Investors.

  • Block Screen Sharing and filesharing between Researchers and IT (one way policy)

You can view the policies in more detail as follows -

Click EDIT next to the policy

Please do not change the Ethical Wall Policies

  • View policy conditions

  • View policy rules

Complete Block: Investor - Researcher Test cases .

*Test case 1 - Investors cannot search for Researchers

Test case 3 - Investors cannot be added to a Chat with Researchers

*Test Case 4 - Alice cannot join meeting with Bob anonymously

  • Sign in with bob@agat.place

  • Start a meeting and send a link to Alice@agat.place.

  • Use Alice to try and join the meeting anonymously. Do this by pasting link in Incognito.

  • See that you can not join the meeting.

Granular Control: Researchers- IT Test cases. Chat is allowed but file and screen share blocked.

*Test Case 1 - Allow IM between Researchers and IT in Chat

  • Use alice@agat.place (Researcher) to send a IM to jim@agat.place (IT) in chat.

  • Message passes through as per policy

*Test Case 2 - Block File Sharing between Researchers and IT in Chat

*Test Case 4 - Block Screen Share between Researchers and IT in Chat

Test Case 8 - Block Screen Share between Researchers and IT in meeting

External Policy Test cases - External communication is allowed for one user Audio/Video is allowed but File Sharing/Desktop Sharing/Chat is blocked.

Test Case 1 - Search between Bob and external user - Allowed

Test Case 2 - Search between Alice and external user - Blocked

Test Case 3 - Block Chat, File share and screen share with External

  • Use Bob@agatdemo.com and search for reuvaina@agatsoftware.com

  • Select Reuvain Aarons (External)

  • send an IM in chat - see that it is blocked

  • share screen from chat - see that it is blocked

  • Call and see that it is allowed

  • In the call send an IM and share screen - see that they are blocked

  • See event in Activity Auditing here - https://msteamsproxy.agatdemo.com/admin/activityauditing

DLP

Messages

Test case 1 : Credit Card and IBAN blocked - IM

  • Use alice@agat.place to send an IM with a credit card number and IBAN (see examples below) to

    alex@agat.place (Please note - Alex is part of Management AD Group and there is no Ethical Wall policy blocking communication)

Credit Card Numbers

6703 4444 4444 4449

4035 5010 0000 0008

IBAN

AL35202111090000000001234567

IL170108000000012612345

Files

Test case 2 : Credit Card and IBAN blocked - File

eDiscovery

  • Navigate to https://msteamsproxy.agatdemo.com/admin/ediscovery

  • Each row on the left hand side represents a chat, channel or meeting

  • click on any row and see the details on the right hand side. Scroll through the conversation

  • Click on Advanced Search to search based on several parameters

  • Search based on text , such as “hello” and see results

SharePoint

Test Case 1 : Alice (Researchers) cannot add Bob (Investors) to SharePoint site

There are 3 ways to do this in a Teams Site:

1- Members > Add members

2- Settings >Site Permissions> Add to group

3- Settings >Site Permissions> share site Only

Test Case 2 : Alice (Researchers) cannot share file with Bob (Investors) from SharePoint site

 

OneDrive

Test Case 1 : Alice (Researchers) cannot share file with Bob (Investors) in OneDrive

  • Navigate to Alice@agat.place (Researchers) OneDrive

  • Share file with bob@agat.place (Investor)

  • Search is blocked.

  • No labels