Finding unmanaged cloud applications with Cloud App Discovery

Overview

In modern enterprises, IT departments are often not aware of all the cloud applications that members of their organization use to do their work. It is easy to see why administrators would have concerns about unauthorized access to corporate data, possible data leakage and other security risks. This lack of awareness can make creating a plan for dealing with these security risks seem daunting.

Cloud App Discovery is a feature of Azure Active Directory (AD) Premium that enables you to discover cloud applications being used by the people in your organization.

With Cloud App Discovery, you can:

  • Find the cloud applications being used and measure that usage by number of users, volume of traffic or number of web requests to the application.
  • Identify the users that are using an application.
  • Export data for offline analysis.
  • Bring these applications under IT control and enable single sign on for user management.

How it works

  1. Application usage agents are installed on user's computers.
  2. The application usage information captured by the agents is sent over a secure, encrypted channel to the cloud app discovery service.
  3. The Cloud App Discovery service evaluates the data and generates reports.

Cloud App Discovery diagram

To get started with Cloud App Discovery, see Getting Started With Cloud App Discovery