Exchange Online
Cyberhaven offers integration with Exchange Online to gain additional insight into data movement within Microsoft for emails that contain attachments. This integration uses an Azure Enterprise application to read events and user information from your organization's Azure tenant.
Establishing this connection is a simple process that requires elevated privileges within your Microsoft Entra environment. No service accounts are required to establish connectivity. Any user with Global Administrator rights in Entra ID can link Cyberhaven with Microsoft Exchange within the Cyberhaven console. So long as a user with the appropriate permissions creates the link, no separate credentials are required for the service to function — the link creates a new application with its own credentials in your Azure tenant.
Requirements
The application requires a number of permissions in order to function properly:
| Permission | Requirement |
|---|---|
| Files.Read.All | List files on a drive |
| Mail.Read | Track sent/received emails |
| User.ReadBasic.All | Ability to scan attachments |
| offline_access | Track local file objects |
| Directory.Read.All | Get a list of users to allow admins to control the tracking |
| Directory.AccessAsUser.All | Get a list of users to allow admins to control the tracking |
| Reports.Read.All | Receive a list of newly uploaded files |