A new feature is currently in preview for Microsoft Azure called Cloud App Discovery.

This feature will give IT visibility into which cloud applications is currently in use within the organization.

This will help organization to detect unauthorized access to corporate data.

Currently, this new feature is in preview – meaning in beta – and is NOT integrated with the Azure portal but it will be moved within the portal when in general availability.

To test it, go to https://appdiscovery.azure.com/

imageimage

The first time you have to download an agent to discover your apps

imageimage

imageimage

imageimage

It install the following service Microsoft Cloud App Discovery Endpoint Agent

image

The cloud agent is using a certificate to authenticate to your Azure tenant; the certificate must be extracted in the same place than the agent installer and will be deleted during the install process

image

If you need to re download the agent, just open the Gear menu shown on the top right

image

Once you have downloaded and installed the app, the system will gather the results; it may take some time to gather your infrastructure

imageimage

Then you just have to analyze the results.