Share via

Need help running a third-party app on Windows . Is it secure?

Aureli Aurel 20 Reputation points
2025-10-07T14:53:52.36+00:00

Hi everyone,

I’ve been exploring some apps that stream media and games on my Windows PC. During setup, they request several permissions that seem a bit unusual, and I am worried about their security, especially since these apps aren’t from the Microsoft Store.

  1. At the same time, I am also curious about how these apps might interact with cloud services, like Microsoft 365 or Azure Active Directory. For example, do Windows and Microsoft cloud security tools like Entra, Defender, or Purview provide ways to manage or monitor permissions and access for these types of apps?
  2. Additionally, since identity management is crucial, I would like to know if tools like Microsoft Identity Manager or Microsoft Authenticator can help secure user access or authenticate these apps properly when they connect to cloud services.

Could someone explain how these child cloud apps work in the context of Windows security and identity management? What are the best practices for keeping both the PC and cloud accounts safe while using third-party apps?

Here’s an example of one such app I am testing: example tool

Thanks a lot in advance!

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud Apps
0 comments
Answer accepted by question author
  1. Damien Pham (WICLOUD CORPORATION) 1,345 Reputation points Microsoft External Staff Moderator
    2025-10-08T08:26:14.87+00:00

    Hello @Aureli Aurel ,

    Thank you for posting your question to Microsoft Q&A,

    Running third-party app depends on whether it has the trusted source or not and what level of system or account access it requests. Third-party apps outside the Microsoft Store aren’t automatically verified by Microsoft, so you should check the publisher’s reputation and digital signature before installing.

    1. About permissions and how these apps interact with Windows and Microsoft cloud services

    Third-party apps that request broad or unusual permissions—especially those outside the Microsoft Store—should always be treated with caution.

    • Windows does not validate permissions for apps installed outside the Store, so you rely on the publisher’s reputation and digital signature.
    • If the app accesses files, network, or devices, those permissions can’t be managed through standard Microsoft 365 or Entra controls unless the app integrates with Microsoft identity services.

    To monitor and control app activity:

    • Use Microsoft Defender for Endpoint or Defender SmartScreen to check for unsafe or malicious behavior.
    • Microsoft Purview can help enforce Data Loss Prevention (DLP) and compliance rules if the app interacts with corporate or cloud data.
    • Microsoft Entra ID (Azure AD) can apply Conditional Access or App consent policies when the app is registered or uses OAuth for sign-in.

    If the app doesn’t authenticate with Entra ID, it operates outside of Microsoft’s cloud governance boundary and cannot be managed or restricted directly.

    1. Microsoft Identity Manager and Microsoft Authenticator can secure your sign-ins and accounts, but don’t guarantee a third-party app’s safety.

    For keeping your PC and cloud service apps safe when using third-party app, I recommend Install only from trusted sources, avoid granting excessive permissions, and test isolated before using it with corporate data.

    Hope this helps! If my answer was helpful - kindly follow the instructions here so others with the same question can benefit as well.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.