English

Home > Use Cases > Use Case - Want the Ability to Detect Suspicious File Access and Automate a Response?

Use Case - Want the Ability to Detect Suspicious File Access and Automate a Response?


![('image9', 'Event')](/en/enpower/use-cases/images/('image9', 'Event').png "('image9', 'Event')")	Event: John manages the legal team in an organization, and he wants to prevent access to restricted or sensitive files. John would like to be notified if designated documents whose sensitivity level is “High” in his team site are accessed from specific IP addresses, and he would like the access to be automatically restricted. He comes to you, the IT administrator, for assistance.
![('image10', 'Resolution')](/en/enpower/use-cases/images/('image10', 'Resolution').png "('image10', 'Resolution')")	Resolution: You have an AvePoint EnPower account and already have permission to manage users in the Workflows module. You log into EnPower and create a dynamic workflow with the trigger event File access, and you configure the trigger scope as “Sensitivity level – Equals – High”, “Container – Matches any of these – Legal”, “Operator IP – Equals”, and specifies the IP address to block. You add the Send email to specified people action, specifying John as the recipient. Then you add the Remove access action and select Remove the user from SharePoint group. After saving and activating this workflow, John will receive email notifications sent by EnPower automatically if these files are accessed on his site.

![('image9', 'Event')](/en/enpower/use-cases/images/('image9', 'Event').png "('image9', 'Event')")

Event: John manages the legal team in an organization, and he wants to prevent access to restricted or sensitive files. John would like to be notified if designated documents whose sensitivity level is “High” in his team site are accessed from specific IP addresses, and he would like the access to be automatically restricted. He comes to you, the IT administrator, for assistance.

![('image10', 'Resolution')](/en/enpower/use-cases/images/('image10', 'Resolution').png "('image10', 'Resolution')")

Resolution: You have an AvePoint EnPower account and already have permission to manage users in the Workflows module. You log into EnPower and create a dynamic workflow with the trigger event File access, and you configure the trigger scope as “Sensitivity level – Equals – High”, “Container – Matches any of these – Legal”, “Operator IP – Equals”, and specifies the IP address to block. You add the Send email to specified people action, specifying John as the recipient. Then you add the Remove access action and select Remove the user from SharePoint group. After saving and activating this workflow, John will receive email notifications sent by EnPower automatically if these files are accessed on his site.

For more information on automatically managing users in Workflows, refer to Workflows.

Permissions for Service Account

Permissions for App Authorization

Teams Dashboards

SharePoint Dashboards

OneDrive Dashboards

Compliance Dashboards

Power Apps Dashboards

Power Automate Dashboards

Power BI Dashboard

Create or Invite Users

Environments

Connections

Power Automate

Power Apps

Power BI

Copilot Studio

Power Pages

Exchange

Teams

Groups

SharePoint

OneDrive

App Registrations

Enterprise Applications

Permissions

Appendix A - Table of Supported Workflow Scope and Actions

Table of Supported Dynamic Workflow Scope and Actions

Table of Supported Manually Triggered Workflow Actions

Appendix C - Assignable Permissions

Microsoft 365 Permissions

Power Platform Permissions

Calling Permissions

Use Case - Want the Ability to Detect Suspicious File Access and Automate a Response?

Table of Supported Dynamic Workflow Scope and Actions

Table of Supported Manually Triggered Workflow Actions

Microsoft 365 Permissions

Power Platform Permissions

Calling Permissions

#Use Case - Want the Ability to Detect Suspicious File Access and Automate a Response?

Use Case - Want the Ability to Detect Suspicious File Access and Automate a Response?