Microsoft Office 365

Integration overview

Microsoft 365 is the productivity platform enterprises run on. SharePoint, OneDrive, Exchange, and Teams are where work happens — and where sensitive data is created, shared, and stored at scale.

Cato SASE connects to Microsoft 365 via API to deliver deep security inspection out-of-band. It scans files and activities without affecting user workflows, detecting sensitive data exposure and malware as they occur.

Operating alongside Microsoft 365, Cato scans content already at rest in SharePoint, OneDrive, and Exchange for DLP violations and malware, while monitoring app activity for risky or anomalous behavior. The result: organizations keep the full productivity of Microsoft 365 and gain the visibility and enforcement enterprise security teams require — all managed from a single console.

How Cato Helps

Detecting sensitive data stored in SharePoint and OneDrive
Data protection · Compliance · DLP
As teams collaborate in Microsoft 365, files containing PII, financial data, or confidential business information can end up in shared SharePoint libraries or personal OneDrive folders often without anyone realizing. Cato connects to SharePoint and OneDrive via API and scans files at rest against DLP content profiles. When a match is found, security teams are alerted and can investigate directly from the Cato Management Application without disrupting how employees use Microsoft 365.

Scanning Exchange email attachments for malware and data leakage
Threat prevention · Email security · Data protection
Email remains one of the most common vectors for both data leakage and malware delivery. Cato connects to Microsoft Exchange via API and scans inbound and outbound attachments using its anti-malware engines and DLP content profiles. Security teams can define rules by sender, recipient, or file type blocking malicious files or flagging emails carrying sensitive content before they reach their destination, with full event logging available in Cato.