Learn the common issues encountered in TMCAS.
|Email Messages with "Do Not Forward" Flag Not Scanned||Scanning||If a user composing an email chooses the "Do not forward" option from Options > Permission, Cloud App Security cannot scan email message contents.|
CAS cannot get mail content if the mail is protected by RMS/IRM.
|Newly Added Users Not Immediately Appearing on Exchange Policy Page||IDSync||After registering Cloud App Security to Microsoft Office 365, newly added users will not immediately appear in the Exchange Policy page. |
Choose Click here if you do not see new users when you create or update the Exchange Online policy. The page automatically updates after Cloud App Security synchronizes with Active Directory once per day.
|Newly Added SharePoint Site Not Showing Immediately on SharePoint Policy Page||SiteSync||After registering Cloud App Security to Microsoft Office 365, newly added SharePoint site will not show immediately in the SharePoint Policy page. |
Choose Click here if you do not see the new site(s) when you create or update the SharePoint Online policy. The page automatically updates after Cloud App Security synchronizes with SharePoint Online once per day.
|Newly Added OneDrive Users Not Showing Immediately on OneDrive Policy Page||IDSync||After registering Cloud App Security to Microsoft Office 365, newly added OneDrive for Business users will not show immediately in the OneDrive Policy page. |
Choose Click here if you do not see new OneDrive for Business users when you create or update the OneDrive for Business policy. The page automatically updates after Cloud App Security synchronizes with OneDrive for Business once per day.
|Exchange Online scan limitations||Scanning||Exchange Online scan limitations:
|SharePoint Online and OneDrive for Biz scan limitations||Scanning||SharePoint Online and OneDrive for Biz scan limitations:
|Compressed File scan limitations||Scanning||Compressed File scan limitations:
|Failure to download Virtual Analyzer report in “Log” page||ATP||The report generated by DDAaaS sandbox will expire in one week. It is configured by DDAaaS and cannot be customized.|
|New customer can download Block List even if he is unable to trigger any scan behavior||ATP||The Block List is a global list that we get from DDAaaS sandbox service. It will show all violations of current API key triggered. We use the same key for authentication to call the sandbox scan service.|
We can understand the current trend of virus outbreak in advance.
|One CLP account is bundled with one Microsoft Office 365 account||Provision||After registering the Cloud App Security to Microsoft Office 365, this CLP account cannot be used to register any other Microsoft Office 365 again.|
|Two SharePoint sites will skip scanning. Manual provision will not support to add them.||Provision||Currently we do not support SharePoint below two site collections: https://Domain-my.sharepoint.com https://Domain.sharepoint.com/search|
Scenario: When doing manually SharePoint provision, if the pasted site collection is not supported, the error message will occur.
|SharePoint Delegate Account currently assigned with one single full license during the Automatic Provision.||Provision||We support different Office 365 plan. Therefore, we cannot filter the SharePoint Online single license well since the name is different in each plans. So currently, we make use of the full license when doing automatic assignment to the SharePoint Delegate Account|
|Customer needs to do a provision when the default domain is changed at O365 portal.||Provision||If default domain has been changed, the delegator account domain will also be changed. CAS will not work well with old delegator account.|
|SharePoint manual provision cannot display the estimated time.||Provision||We estimate the sync time based on the site collection and sub site count number. Currently, only the account with the Global Administrator role can get this count numbers. So during the manually SharePoint provision process, if the Delegate Account user provided without GA role, is unable to estimate the time|
|User whose country does not belong to EMEA during registration selection cannot log in to Cloud App Security Europe service.||Provision||Only EMEA CLP account will be able to login Cloud App Security Europe service|