Cloud Discovery

Start course

This course explores Microsoft Cloud App Security, including what it is, what it offers, and how it's configured. You'll learn about Cloud Discovery and how to configure Microsoft Cloud App Security. You’ll learn about access policies, policy templates, and how to manage OAuth apps, before diving into Cloud App Security log uploads.

We'll also look at app connectors and at the Cloud App Catalog before moving on to the Cloud App Security dashboard and ways to manage alerts. Finally, we'll cover data management reports.

Learning Objectives

  • Get a solid understanding of Microsoft Cloud App Security including what it is, what it offers, and how it's configured
  • Learn how to set up access policies and access templates
  • Learn how to manage OAuth apps and Cloud App Security uploads
  • Understand how app connectors and the Cloud App Catalog add security to your apps
  • Learn about Cloud App Security dashboard, how to manage alerts, and how to generate management reports

Intended Audience

This course is intended for those who wish to learn how to use Cloud App Security in Microsoft 365.


To get the most out of this course, you should already have some basic knowledge of Microsoft 365.


Cloud Discovery is a part of Cloud App Security that looks at your traffic logs in order to dynamically discover and analyze cloud apps that are in use by your organization. You can use Cloud Discovery to create what’s called a snapshot report that shows your organization's cloud use, by manually uploading log files from your firewalls and proxies. If you wish to setup continuous reporting, you can configure the Cloud App Security log collectors to forward your logs to Cloud Discovery on a regular basis. 

To do its thing, Cloud Discovery looks at the traffic logs that you provide and compares them with Microsoft Cloud App Security's cloud app catalog. This app catalog consists of over 16,000 cloud apps. Each app is ranked and scored on over 80 risk factors. It does this to provide you with ongoing visibility into your organization’s cloud use, any Shadow IT, and the risk that Shadow IT poses in your organization.

The Cloud Discovery dashboard provides an overview of apps that are being used in the organization, along with any open alerts. It also displays the risk levels of the apps in the organization. The dashboard also shows who the top app users are. You can even use the dashboard to filter on data that you are interested in. You can create specific views that show only the information that you are most interested in.

The image on your screen shows what a typical cloud discovery dashboard looks like.

If you notice in this screenshot, there is quite a bit of information provided. The App Categories pane shows a listing of the different categories of apps that are deployed in the environment, while the Discovered Apps pane shows the specific apps that have been discovered. 

The Apps Headquarters Location pane shows how the discovered apps are spread out geographically, while the Top Entities pane shows what essentially are the top users.


The Risk Levels pane shows the app traffic breakdown by risk level, while the Cloud Discovery Open Alerts pane shows all open alerts.

About the Author
Learning Paths

Tom is a 25+ year veteran of the IT industry, having worked in environments as large as 40k seats and as small as 50 seats. Throughout the course of a long an interesting career, he has built an in-depth skillset that spans numerous IT disciplines. Tom has designed and architected small, large, and global IT solutions.

In addition to the Cloud Platform and Infrastructure MCSE certification, Tom also carries several other Microsoft certifications. His ability to see things from a strategic perspective allows Tom to architect solutions that closely align with business needs.

In his spare time, Tom enjoys camping, fishing, and playing poker.