Find unmanaged cloud applications with Cloud App Discovery


Cloud App Discovery is a feature of Azure Active Directory Premium that enables you to discover unmanaged cloud applications being used by the people in your organization. In modern enterprises, IT departments are often not aware of all the cloud applications that members of their organization use to do their work. It is easy to see why administrators would have concerns about unauthorized access to corporate data, possible data leakage and other security risks. This lack of awareness can make creating a plan for dealing with these security risks seem daunting.


Check out the improvements to Cloud App Discovery in Azure Active Directory (Azure AD), which are enhanced by integration with Microsoft Cloud App Security.

With Cloud App Discovery, you can:

  • Find the cloud applications being used and measure that usage by number of users, volume of traffic or number of web requests to the application.
  • Identify the users that are using an application.
  • Export data for offline analysis.
  • Bring these applications under IT control and enable single sign-on for user management.

How it works

  1. Application usage agents are installed on user's computers.
  2. The application usage information captured by the agents is sent over a secure, encrypted channel to the cloud app discovery service.
  3. The Cloud App Discovery service evaluates the data and generates reports.

Cloud App Discovery diagram

Next steps