Administrators reviewing the CloudSOC Gatelet documentation may observe that OneDrive and Office 365 Outlook are listed as supported Full Gatelets. However, these applications are not available as standalone Gatelets in the CloudSOC Store, leading to confusion during deployment and policy configuration.

The presence of OneDrive and Office 365 Outlook in the Gatelet documentation reflects their role as sub-application labels used by the Investigate module within CloudSOC. These labels are applied to traffic flowing through the Office 365 Gatelet, allowing for granular visibility and event categorization.

• OneDrive and Outlook are not separate Gatelets.
• They are event-level identifiers used by Investigate to tag traffic within the broader Office 365 application suite (Label name is: Facility).
• This labeling enhances clarity for administrators during auditing, and incident response.
• Continue to use "Office 365" in the policy configuration

To monitor and manage OneDrive and Outlook traffic in CloudSOC:

1. Deploy the Office 365 Gatelet.
2. Access the Investigate module to view traffic labeled as:
   • OneDrive (for file storage and sync activity)
   • Office 365 Outlook (for email-related activity)
3. Use these labels to filter, analyze, and report as needed.

These labels are informational and do not require separate Gatelet configuration.