Microsoft Defender for Cloud Apps documentation
Microsoft Defender for Cloud Apps is a Cloud Access Security Broker (CASB) that operates on multiple clouds. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services.
About Defender for Cloud Apps
Overview
What's new
video
Get started
Quickstart
Reference
Explore our top use cases
Tutorial
- Detect and manage suspicious activities
- Investigate risky users
- Investigate risky OAuth apps
- Protect any app in your organization in real time
- Block download of sensitive information
- Protect files with admin quarantine
- Apply sensitivity labels from Microsoft Purview Information Protection
- Extend governance to endpoint remediation
Best practices
Get Started
- Discover and assess cloud apps
- Apply cloud governance policies
- Limit exposure of shared data and enforce collaboration policies
- Discover, classify, label, and protect regulated and sensitive data stored in the cloud
- Enforce DLP and compliance policies for data stored in the cloud
- Block and protect download of sensitive data to unmanaged or risky devices
- Secure collaboration with external users by enforcing real-time session controls
- Detect cloud threats, compromised accounts, malicious insiders, and ransomware
- Use the audit trail of activities for forensic investigations
- Secure IaaS services and custom apps