![]() ![]() With the Deep Inspection option, enabled, the driver component even acts as a trusted man-in-the-middle by intercepting TLS-encrypted traffic and inserts itself into the encrypted stream.ĭue to this nature, the Azure AD Cloud App Discovery endpoint agent has incompatibilities. The Azure AD Cloud App Discovery endpoint agent uses a kernel-mode Windows Filtering Platform driver to intercept web traffic. ![]() While this sounds expensive, only admins who access the Cloud App Discovery reports in the Azure Portal need an Azure Active Directory Premium subscription, initially.Īzure Active Directory Premium trial licenses are usually limited to 25 or 50 user accounts and 90 days. It’s not freeĪzure AD Cloud App Discovery is a premium feature. When your organization relies on Mozilla FireFox, Apple Safari, or any other browser not listed, the Azure AD Cloud App Discovery endpoint agent will not report on application usage. The documentation is also clear on its support of Windows Server 2008, and up, but not whether the endpoint agent returns useful information on Windows Servers deployed as Remote Desktop session hosts (Terminal Servers).įurthermore, for web-based applications, only traffic for Internet Explorer, Edge and Google Chrome are reported upon. While the Azure Active Directory Cloud App Discovery endpoint agent can be installed on Windows 7, Windows 8.1 and Windows 10, it can’t perform its magic for colleagues using MacOS, iOS and/or Android-based devices. It is great, as long as you remember these five things: Its agent doesn’t support all devices and browsers The data can be sorted on each of these columns. It also shows you the number of users, the amount of web requests, the data volume, files uploaded and files downloaded. When you zoom in on the data for the first graph, a second pane opens with a table specifying the app name, its category and status. The total number of observed agent installations.This graph can be modified to show volume or web requests. The total number (count) of observed apps, the number of unmanaged apps and the number of managed apps.The default charts in the default Azure AD App Proxy pane show you: This data, that is conveniently filed and categorized for you, using Azure Machine Learning (ML), can be accessed in the Azure Portal.įrom this data, you can quickly see which apps are used by which colleagues and how frequently they use it. One of the nicest features, but unfortunately less common features of Azure AD is its Cloud App Discovery tool and the way it integrates with Azure AD Identity Protection.Īzure AD Cloud App Discovery can be used to inventory the use of ‘shadow IT’.Īzure AD Cloud App Discovery consists of an endpoint agent, that needs to be installed on users’ devices, reporting to the Cloud App Discovery service. Azure Active Directory is quickly becoming the Identity Management-as-a-Service solution of choice for many organizations. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |