Configure an app registration on Azure Active Directory
to enable SaaS Security to retrieve users and groups
If you performed an Azure Active Directory
integration for SaaS Security API, SaaS Security Inline
uses that same integration framework, and you do not need to repeat
SaaS Security integrates with Azure Active
Directory (AD) to manage cloud-based identity and access management
service. After Azure AD connects to SaaS Security, the service retrieves
your groups, which you can specify in your SaaS policy rule recommendations.
Creating policy rule recommendations based on user group membership
rather than individual users simplifies administration because you
don’t need to update the recommendation whenever group membership
To integrate Azure AD, you need to:
Configure an application registration
on Azure AD.
Connect Azure AD to SaaS Security.
Select the AD groups you want to scan.
Configure an Application Registration on Azure AD
As you create an application on Azure AD to assign
SaaS Security the necessary permissions to establish a connection
with Azure AD and retrieve groups, record the
you will need this information later to connect Azure AD to SaaS