Both Overe Assess and Overe Protect offer comprehensive security solutions for Microsoft 365 environments. However, each service operates with different levels of permissions and capabilities, catering to different stages of security management. Below is a breakdown of how these two services differ and what permissions are required to make them function optimally.
Overe Assess: Limited Permissions, Rapid Security Assessment
Overe Assess is designed to give MSPs and businesses a quick and insightful look into the security posture of their Microsoft 365 environment, using a lower set of permissions. It is an excellent tool for baseline security assessments without the need for heavy administrative access.
Key Permissions for Overe Assess:
User.Read: Reads basic user profile information, which helps in identifying which user accounts are active and whether their security configurations (like MFA) are in place.
Policy.Read.All: Allows Overe to review your organization’s security policies, such as conditional access settings.
Directory.Read.All: Reads your organization’s directory data to assess group memberships and roles.
Application.Read.All: Identifies third-party applications connected to your Microsoft environment, allowing for an evaluation of their permissions.
These permissions are focused on providing insights into:
MFA usage and misconfigurations
Microsoft security policies
External app integrations
Inactive accounts
While Overe Assess helps you understand potential risks, its ability to mitigate these risks is limited without the higher-level permissions and functionalities that come with Overe Protect (Free 14-day trial)
Overe Protect: Full-Scale SaaS Security with Advanced Permissions
Overe Protect is the premium offering that goes beyond assessment by implementing security policies and automatically responding to threats in real time. It requires a broader set of permissions to provide the necessary oversight and automated remediation for your Microsoft 365 environment.
Key Permissions for Overe Protect:
User.ReadWrite.All: Enables Overe to manage and remediate security risks related to user accounts, such as locking accounts or enforcing MFA settings.
SecurityEvents.Read.All: Grants access to security events, allowing Overe to detect and respond to potential threats as they arise.
Application.ReadWrite.All: Manages all connected applications, ensuring only authorized apps with the correct permissions remain active in your environment.
AuditLog.Read.All: Provides the ability to review audit logs for a detailed history of user actions, making it easier to trace back malicious activity.
Policy.ReadWrite.ConditionalAccess: Allows Overe to read and enforce conditional access policies, ensuring that all your security controls are properly set up and followed.
These extended permissions unlock features such as:
Real-time anomaly and adversarial behavior detection
Automated policy enforcement (e.g., MFA enforcement, user lockdowns)
Continuous monitoring of connected apps and devices
Response to identified threats by automatically adjusting security settings
Conclusion: Tailoring Permissions to Your Needs
Overe Assess is a lightweight, limited-permission service that offers essential insights into your Microsoft 365 environment. It's an excellent tool for quickly identifying security gaps without requiring heavy administrative privileges.
On the other hand, Overe Protect provides full-scale security management, including automated threat detection and response. With its advanced permissions, it allows MSPs to not only identify risks but also take immediate actions to mitigate them, ensuring a secure and compliant Microsoft 365 environment.
For those just getting started, Overe Assess offers a valuable entry point, but upgrading to Overe Protect ensures comprehensive protection with minimal manual intervention.