Turn on and manage SaaS security posture management (SSPM)

Your SaaS application environments may be configured in a risky posture. Microsoft Defender for Cloud Apps provides you with risk security configuration assessments for your SaaS applications to help you prevent possible risks. These recommendations are shown via Microsoft Secure Score once you have a connector to an application. For example:

Prerequisites

• Your organization must have Microsoft Defender for Cloud Apps licenses.

• Your app must be connected to Defender for Cloud Apps. For more information, see:

  • Connect apps to get visibility and control with Microsoft Defender for Cloud Apps
  • User, app governance, and security configuration visibility

Turn on Secure Score recommendations

This procedure describes how to ensure that your connector is set to show data in Microsoft Secure Score for SaaS app security posture management.

1. In Microsoft Defender XDR, select Settings > Cloud Apps > Connected apps > App Connectors.

2. Use the filter to locate the app where you want to turn on Secure Score recommendations.

   Tip

   If you have multiple instances of the same app and also have Defender for Cloud Preview features turned on, you'll have an instance drawer for each instance of the app. Multiple instances of the same app aren't supported without Preview features turned on.

3. Open the instance drawer and note whether Secure Score recommendations are turned on or off. For example, the following screenshot shows that Secure Score recommendations are turned on for Okta Contoso EU instance:

   

   If the instance is currently set to Off, select the ... options menu and then select Turn on Secure Score recommendations. For example:

   

Security recommendations are shown automatically in Microsoft Secure Score. Recommendations are based on Microsoft benchmarks, and may take up to 24 hours to update.

If you have Preview features turned on and you have multiple instances of an app, adding an app instance is irreversible. Security recommendations for the selected instance are added to your Secure Score and impact your Secure Score rating.

In Microsoft Secure Score, filter the Recommended actions tab by product to view any recommended actions. If you have multiple instances of an app, you can select to filter recommendations from specific instances only. For example:

Select a recommendation and then select the Implementation tab in the details pane for a step-by-step remediation guide.

For more information, see Assess your security posture with Microsoft Secure Score.

Next steps

Control cloud apps with policies

If you run into any problems, we're here to help. To get assistance or support for your product issue, please open a support ticket.