Deactive or hide "no business data allowed" connectors in Flow
we would like to provide a power platform for our company, where only connectors should be offered which have been classified as secure and harmless third-party software. However, the connectors cannot be deactivated or hidden in the "no business data allowed", this poses great challenges for many companies. Therefore we ask you to be able to deactivate or hide the connectors.
As a first step, simply granting the ability to disable connectors altogether seems the most logical approach. More granular permissions could come later. The binary business-data-not-business-data-but-everything-is-still-enabled approach is not really very helpful from a security perspective.
We are also running into this issue. We are trying to get PowerApps approved for use in our company and it is being denied because a user can create a PowerApp form and connect it to their personal OneDrive, for instance, and gather data from people and send it outside the company. We need a way to block this.
This goes beyond simply providing the capability to "Disable a connector" - we really need more granular controls for a given environment, gateway, or connection.
For instance, in general we don't want our users moving data from on-premise SQL dbs due to the nature of some of those databases, but we want some admin built flows to have the capability.
In addition, if you don't put the SQL connector in the business zone, it allows people to move data from it to other un-approved connectors that aren't managed... why is this system so binary? It's very primitively thought out.
Hello Sandra, yes I totally agree that this would be great to have. thx Lars
Alexander Weinhard commented
This is very essential for us, because we want to provide a relatively restricted environment (e.g. only allowing the usage of SharePoint for data storage and Flow triggering and Outlook for mailing - oversimplified), but which is open for the usage of all company employees. With more than 20.000 employees though, we cannot simply "hope" that no one uses the "No Business data allowed" category to probably send files from OneDrive to Twitter... This is a serious data security risk and prevents the usage of both PowerApps and Flow in our company!