Microsoft Defender for Cloud Apps – Improvements to Microsoft 365 connector configuration page

Microsoft Defender for Cloud Apps will update the Microsoft 365 connector configuration page in January 2026, adding clearer layouts and new default values for new connectors to reduce misconfigurations. Existing connectors remain unchanged. Admins should review current settings to ensure required Entra permissions are enabled.

[Introduction]

Microsoft Defender for Cloud Apps is updating the Microsoft 365 connector configuration page with revised default values for new connector setups. These improvements are designed to help security administrators more easily understand the Microsoft Entra data signals required to support SaaS Identity–related security features. This update also reduces the likelihood of misconfigurations so that capabilities such as SaaS Identity Discovery, Threat Protection, Response, and Posture insights continue to receive the data they depend on.

This is also a good opportunity to verify that your existing connector configurations are set correctly for the security features in your environment.

[When this will happen]

We will begin rolling out in mid-January 2026 and expect to complete by late January 2026.

[How this will affect your organization]

Who is affected: Admins who manage Microsoft Defender for Cloud Apps and configure the Microsoft 365 connector.

What will happen:

• Existing connectors will not be modified. All current connector settings will remain unchanged for privacy reasons.
• The configuration page in the Microsoft 365 connector will receive an updated layout to clarify required permissions.
• New default values will apply only to newly created Microsoft 365 connectors.
• Limiting access to required Microsoft Entra signals may reduce threat detection coverage and posture accuracy.

[What you need to do to prepare]

• Review your current configuration of Microsoft 365 connector settings to ensure required Entra permissions remain enabled:

 

• To do this:
  1. Go to Microsoft Security platform > Settings > Cloud apps > App connectors.
  2. Select Microsoft 365.
  3. Choose Edit settings.
  4. Ensure that all required checkboxes are selected (All except "Microsoft 365 files").
  5. Select Connect Microsoft 365.
• Inform your security and identity teams about the updated UI so they are prepared once the refreshed layout becomes available.
• Update internal documentation as needed.

Learn more: Connect Microsoft 365 to Microsoft Defender for Cloud Apps - How Defender for Cloud Apps helps protect your Microsoft 365 environment | Microsoft Learn

[Compliance considerations]

No compliance considerations identified. Review as appropriate for your organization.