Microsoft Defender for Cloud Apps documentation

Microsoft Defender for Cloud Apps delivers full protection for SaaS applications, helping you monitor and protect your cloud app data, using fundamental cloud access security broker (CASB) functionality, SaaS Security Posture Management (SSPM) features, advanced threat protection, and app-to-app protection.

About Defender for Cloud Apps

Overview

• What is Defender for Cloud Apps?
• Defender for Cloud Apps and zero trust monitoring

What's new

• What's new in Defender for Cloud Apps

Concept

• Data security and privacy

Get started

Quickstart

• Get started with Defender for Cloud Apps

How-To Guide

• Basic setup
• Connect cloud apps
• View and manage security posture

Concept

• Best practices for protecting your organizations
• Operations guide

Cloud discovery and security posture

Concept

• Cloud discovery overview
• Cloud discovery dashboard

How-To Guide

• Calculate risk scores
• Collect logs
• Discover and manage shadow IT
• Manage SaaS security posture

Threat protection

Concept

• App control with policies
• Access and session protection
• Cloud app risk and suspicious activity investigation
• Threat response governance actions

Information protection

Concept

• Common information protection policies
• DLP content inspection

How-To Guide

• Integrate with Microsoft Information Protection
• Discover and protect sensitive information
• Protect files with admin quarantine
• Protect data in motion
• Block sensitive information download

App governance for OAuth apps

Concept

• App governance overview

How-To Guide

• Turn on app governance
• Get started
• Investigate app governance threat detections
• Create app governance app policies
• Monitor and respond to unusual data usage
• Secure apps with app hygiene