Tag Discovered SaaS Apps

Learn how to categorize discovered SaaS applications on SaaS Security Inline as either trusted or untrusted.
SaaS Security Inline enables you to categorize discovered SaaS applications on SaaS Security API to monitor users of SaaS apps more efficiently and filter SaaS apps. After you apply tags, you can use the
Dashboard
Tag
bar graph to drill down into SaaS application usage.
Tags are local only to SaaS Security API and will not be applied to your firewall.
There are two ways to apply tags to SaaS applications on SaaS Security Inline:
  • Default Tags
    —Apply predefined tags (for example,
    Unsanctioned
    ) to reflect whether or not your organization approves of the SaaS application.
  • Custom Tags
    —Create and apply custom tags to group applications with common attributes to reflect how your organization views SaaS applications. For example, create and apply a
    Communication
    tag to Gmail.

Apply Default Tags

Based on a SaaS application’s risk factors, use the default tags available to categorize a SaaS application as sanctioned or unsanctioned so that you can differentiate unsanctioned SaaS apps from the other SaaS apps that are being used by employees in your organization.
  • Sanctioned
    —App sanctioned by your organization and being used by employees in your organization.
  • Tolerated
    —App that isn’t trusted like a sanctioned app, but that is allowed to be used by employees until your organization is able to replace it with a more secure app so as not to inhibit the productivity of your users. However, consider creating SaaS policy rule recommendations for tolerated SaaS apps to implement restrictions on specific actions (for example, upload or download).such as upload and download.
  • Unsanctioned
    —App unsanctioned by your organization for use by employees in your organization.
  • Unknown
    —Default for SaaS applications that you have not tagged.
  1. Select
    Visibility
    Discovered Applications
    .
  2. Apply a default tag:
    • (Single App) Locate and select the SaaS application that you want to tag, click the tag icon, then choose a default tag.
    • (Multiple Apps) Locate and select the SaaS applications that you want to bulk tag, click the bulk tag icon, then choose a default tag.

Create and Apply Custom Tags

SaaS applications in the Application Dictionary belong to an application category and subcategories to enable filtering, but you cannot modify these attributes. However, you can create your own categorization with custom tags. You can rename or delete a custom tag at any time. When you do, SaaS Security Inline updates or removes the tag from all SaaS apps that use that tag. You can create up to 100 custom tags. Custom tags display alongside default tags.
  1. Select
    Visibility
    Discovered Applications
    Custom Tags
    .
  2. Create the custom tag.
    1. Click the custom icon, then
      Add a New Tag
      .
    2. Provide a descriptive name for the tag. A tag comprised of single word displays uniformly in the bar graph.
  3. Apply a custom tag:
    1. Locate and select one or more SaaS applications.
    2. Click the custom tag icon, then select a custom tag.

Recommended For You