Announcements
3
Hi everyone...
I was wondering if the PowerApps ecosystem allows for the configuration of external 3rd party security tools (for things like IP filtering and DDoS attacks). Since PowerApps is a platform, I'm not sure if this is possible, or if we are limited to security protection provided by Azure AD (e.g Conditional access).
Thanks!
Hi @DY1,
It depends for what use case. If it's for something app specific, you can use connectors/custom connectors to integrate security tools into your process (e.g. Virus Scanning files uploaded to Dataverse).
If it's broader platform security like infrastructure etc, then I would suggest starting with what Microsoft provides with the platform, and then assess any gaps and determine where you can fill those gaps with 3rd party tools.
---
Please click Accept as Solution if my post answered your question. This will help others find solutions to similar questions. If you like my post and/or find it helpful, please consider giving it a Thumbs Up.
Thank you Chris for these resources. The D365 Implementation Guide is particularly helpful.
However, I am still left with my original question...does the PowerApps ecosystem allow for the configuration of external 3rd party security tools?
The reason I ask is I am trying to determine a range of security options to present to my team. If it is not possible to use 3rd party security tools (say from Checkpoint for example), then I won't need to investigate any 3rd party tools and I can focus on strictly what Microsoft provides for security. If 3rd party security tools can be used with the PowerApps ecosystem, then I should try to determine which vendors provide those tools and present their offerings as options.
Thanks!
Hi @DY1,
Power Platform and D365 are a SaaS solution and provide many layers of security under the hood, and as such is able to meet several industry regulations. Because it runs on Azure, it out of box uses several of the security features available to Azure customers, such as:
You can optionally use Azure ExpressRoute with Power Platform to setup a private connection between your on prem infrastructure and Power Platform.
When it comes to Security Incident & Event Monitoring (SIEM), the platform has very in depth auditing/activity logging capability that works together with the M365 Security & Compliance Center. You can integrate your own SIEM tool and many are supported out of box.
The Security Section (12) of the Dynamics 365 Implemention Guide describes the available security measures at all layers very well.
https://aka.ms/D365ImplementationGuide
---
Please click Accept as Solution if my post answered your question. This will help others find solutions to similar questions. If you like my post and/or find it helpful, please consider giving it a Thumbs Up.
Hi @DY1 ,
There will be a level of security baked in from Microsoft at the infrastructure level.
In regards to things like DDOS attacks, there is rate limiting that applies to many of the connectors. If you are using HTTP triggers, look into leveraging an APIM. It then comes down to observability and how you will monitor and get alerted. Because the solution files are proprietary, there doesnt appear to be any SAST tools which can be used.
Other than that, alot of it comes back down to education and common sense. A strong password policy, use key vaults when possible, secure your inputs/outputs when required and maybe incorporate a framework for deploying across lower and higher environments where reviews happen.
--------------------------------------------------------------------------
If I have answered your question, please mark my post as a solution
If you have found my response helpful, please give it a thumbs up
Hello @DY1,
I'm not quite sure at what level you would like to prevent these attacks, but I don't think this is possible. For example, if you would be trying to block malicious login attempts from outside your own network to the Power Platform, you would have to find a way to restrict network traffic between the attacker and the Microsoft platform.
There are a number of Azure service you can use to harden your security, this would be my first step.
#1
WarrenBelz
791
Most Valuable Professional
#2
MS.Ragavendar
410
#3
mmbr1606
275
Super User 2025 Season 1
Share
Report
All responses (
Answers (
