How is MS Teams protected by the o365 Securlet?
Files shared using Microsoft Teams are stored on their respective MS sites, and are scanned during site scanning as part of Sites.
Broadcom has added Team's API calls through the O365 securet. Make sure the Teams box is checked.
For existing o365 securlet customers that wish to scan messages, the securlet has to be deactivated and reactivated (without purge) in order to check the Teams Messages box. See the o365 Securlet TechDoc for more detail.
*** Note To enable CloudSOC to scan Microsoft Teams conversation messages, the users must have an active Microsoft 365 E5 license.
DLP 15.x the application detector "scan_filter" is custom with the application being case sensitive "Office 365 MS Teams"
DLP 16.0 will have a dropdown for "Office 365 MS Teams"