SaaS directory

App gallery directory

Single-sign-on app connected directory

Follow the principle of least user access to ensure that your app only requests permissions it actually needs.

Test your app in each tenant to ensure functionality.

Use names and descriptions that are only meaningful to your team.

The Azure AD Application Proxy service and Application Proxy connector

An Application Proxy connector and the Azure Firewall service

The Azure AD Application Proxy service and Application Gateway

Administrator approved and automatic.

You should only use Manual Provisioning to ensure security.

Manual and automatic

Microsoft Defender for Cloud Apps

Microsoft Cloud Computing Services

Microsoft Security Center

Azure AD audit logs allow customer to monitor activity when provisioning new services within Azure.

Azure AD audit logs provide records of system activities for compliance reporting.

Azure AD audit logs provide a comparison of budgeted Azure usage compared to actual.

As non-connected users.

As directory-synchronized identities.

As transitional users.