Help and FAQ's
Elevating Your Cybersecurity Beyond Antivirus and Web Filtering
In the digital era, where business operations are increasingly cloud-based, traditional security measures like antivirus and web filtering are no longer sufficient to fully protect your business. While these are essential layers of your cybersecurity defense, they don't cover the complexities and vulnerabilities associated with SaaS applications, such as Microsoft 365, which are crucial to your day-to-day operations.
The Gap in Traditional Security Measures
Antivirus software and web filtering play critical roles in safeguarding against malware and restricting access to malicious sites. However, they operate primarily at the perimeter level and are not designed to monitor or protect the nuanced, application-level operations within cloud-based platforms like Microsoft 365. As your business leverages these SaaS applications for communication, collaboration, and data storage, it becomes imperative to address security within these environments directly.
Why SaaS Application Security Matters
SaaS applications, by their nature, are accessible from anywhere, which is great for productivity but also opens up new avenues for potential cyber threats. Misconfigurations, unauthorised access, and insider threats can all go undetected by traditional security measures. Moreover, the shared responsibility model of cloud services means that while the service provider secures the infrastructure, your business is responsible for protecting the data within it.
Overe Premium is specifically designed to fill this security gap by offering a comprehensive solution focused on SaaS applications like Microsoft 365. Here's how Overe Premium enhances your cybersecurity posture:
In-depth Assessments
Overe Premium conducts thorough evaluations of your Microsoft 365 settings and usage to identify potential vulnerabilities, going beyond what antivirus and web filters can see.
Proactive Threat Detection
Leveraging AI and machine learning, Overe Premium monitors for unusual activities within your SaaS applications that could indicate a breach or an insider threat, providing an additional layer of security.
Automated Policy Enforcement
To ensure your Microsoft 365 environment remains secure, Overe Premium automates the application of security policies, correcting misconfigurations and enforcing best practices without manual intervention.
Seamless Integration
Overe Premium works alongside your existing antivirus and web filtering solutions, offering a holistic approach to cybersecurity that addresses both the perimeter and the heart of your cloud-based operations.
Find out more on our Product page on our website
Contact us to gain access to Overe Premium. If you are either trialling or have paid for Overe Premium, follow the steps in this video to remove your existing Overe Free integration and enable Overe Premium.
How to assign the required roles to Overe's App
The Overe Premium app requires a specific role assigned to be able to manage security policies in your tenant.
Please follow the steps below and described in this video
Open Entra App Role administration: here
Select Role: Exchange Administrator
Select App: Overe Premium
Microsoft documentation relating to App Roles and best practices available here.
Many of the error codes revolve around enabling auditing so Overe can monitor your events, Audit logging is meant to be turned on by default for all new Microsoft 365 organizations. However, if you are managing a client with a Microsoft tenant before 2023, there is a strong likelihood that Auditing is turned off. Overe will check the status and provide guidance if there is an issue. Here are a list of common error codes and how to resolve them:
Error | Fix |
500:|Microsoft.Exchange.Configuration.Tasks.InvalidOperationInDehydratedContextException | Auditing still being enabled. Please allow 24 to 48 hours before you retry this operation as Microsoft is updating your tenant to allow logging. |
403:OperationStopped: Case when Message contains:AADSTS70011 Invalid scope. | This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant or not have the right permissions. Please try again with the correct account and adequate permissions |
| |
Role of Owner- Can do everything on Organization, Site and Integration level
Role of Admin - Can do everything on Organization, Site and Integration level, except:
Offboarding an organization
Making another collaborator a Owner
Making a Owner not a Owner
Role of Viewer - Can do all “read-only” tasks but cannot perform any changes.
Need more granularity? Contact us to give feedback.
Below are our current list of best practice controls:
controlID | Description |
control.exchangeonline.SMTPAccessDisableLegacyAuth | Disable SMTP basic auth |
control.azuread.RequireMFAChallengeForMSAdminPortals | Conditional Access: Enforce additional MFA challenge for accessing Microsoft admin portals |
control.azuread.DisableLegacyAuth | Conditional Access - Disable legacy authentication |
control.azuread.DisableUserAppConsent | Disable user oAuth app consent for users |
control.azuread.RequireMFAForAllUsers | Conditional Access - Require MFA for all users |
control.exchangeonline.MalwareFileTypesFilterPolicy | Mark certain file extensions as malware threat |
control.azuread.PasswordPolicyNeverExpire | Set passwords to never expire |
control.exchangeonline.EnableUnifiedLog | Enable Unified Log (Required for Logging/Alerting/Response) |
control.azuread.EnableAdminAppConsentRequestApproval | Enable admin approval policy for app consent requests |
Overe has detected a change from the recommended setting for one or more of the Overe best practice controls in your within your Microsoft 365 integration.
This drift occurs when there is a mismatch between the policy values that are monitored in Overe and those currently set in your Microsoft Tenant.
You will receive these alerts daily until the policy values are aligned or the affected policy control is disabled in Overe via the Policies section of the site noted below, see how to do this here:
If you are using either Overe Free Premium, follow the steps in this video to fix any integration issues with your Microsoft tenant.
If you get the following message: "Admin and MFA information can't be retrieved with your current Microsoft license. Microsoft Entra ID P1 or P2 license is required to access these fields."
Please ensure you have the correct license
more details coming
Follow these steps...
Coming soon
Our subscription agreement can be found here:
Privacy policy can be found here: https://www.overe.io/privacy-policy
Here you will find some of the common Frequently Asked Questions. We are continually building this out based on your feedback. If you need any further help, please contact us directly via email: hello@overe.io