This is a DLP policy template that you can implement easily in the Nightfall platform.
| Description | Detect and automatically notify when secrets such as API keys are found in Microsoft Teams |
|---|---|
| Integration | Microsoft Teams |
| Use Case | Prevent Secrets Sprawl |
| Output Settings | Alert admins in Slack or Teams, recommend configuring alerting to SIEM, and automate remediations or alert end-users with remediation instructions and educational messaging to proper secrets handling to prevent future exposure. |
| Inclusions | Select tenants, drives, folders you want to monitor. |
| Exclusions | Select files you don't want to monitor based on permissions, folders, file paths, and file extensions |
These are the detection rules that will be applied within this policy, defining what types of sensitive data the policy is looking for.