Connect Azure to Microsoft Defender for Cloud Apps

Note

We've renamed Microsoft Cloud App Security. It's now called Microsoft Defender for Cloud Apps. In the coming weeks, we'll update the screenshots and instructions here and in related pages. For more information about the change, see this announcement. To learn more about the recent renaming of Microsoft security services, see the Microsoft Ignite Security blog.

This article provides instructions for connecting Microsoft Defender for Cloud Apps to your existing Azure account using the app connector API. This connection gives you visibility into and control over Azure use. For information about how Defender for Cloud Apps protects Azure, see Protect Azure.

How to connect Azure to Defender for Cloud Apps

Note

  • User must be a Global or Security administrator in Azure AD to connect Azure to Microsoft Defender for Cloud Apps.
  • Defender for Cloud Apps displays activities from all subscriptions.
  • User account information is populated in Defender for Cloud Apps as users perform activities in Azure.
  • Currently, Defender for Cloud Apps monitors only ARM activities.
  1. In the Connected apps page, click the plus button and select Microsoft Azure.

    connect Azure menu item.

  2. In the Azure pop-up, click Connect Microsoft Azure.

    connect Azure.

Note

After connecting Azure, data will be pulled. You will see data from then onwards.

If you have any problems connecting the app, see Troubleshooting App Connectors.

Next steps

If you run into any problems, we're here to help. To get assistance or support for your product issue, please open a support ticket.