The service automatically scans your cloud apps using predefined data patterns, classifies all documents using machine learning, and checks hash on all Microsoft Office documents, PDF, and portable executable files against WildFire rules without requiring you to create any policies.
You can review user activity logs enabling you to monitor and investigate the actions of your end users on the data and assets stored in your apps. You can track events, such as file and folder downloads and uploads as well as failed login attempts, or you can learn how a user shared or collaborated on assets hosted in your SaaS applications.
WildFire detects and protects against malicious portable executables, Microsoft Office Files, Adobe Portable Document Format (PDF) files, and known threats based on file hash (a unique fingerprint of a file as a result of running the file through a cryptographic hash function).
Currently, a license includes three properties:
Service End Date – This is when the current license loaded into the portal expires. When expiration occurs, all scanning of content is stopped until a valid license is applied. We will continue to keep the collected data in the portal for 90 days. After this point, the tenant is de-provisioned and deleted. These are provisioned for durations of one or three years.
Total User Count – This is the quantity of users that we can track and collect data on. This includes, activities, files owned, and shared. Currently this metric is not enforced and we try to match the total number of active users in the organization.