SaaS Management: Microsoft Entra ID Connector

JumpCloud® SaaS Management gives you visibility and control over shadow IT and SaaS app use within your org. Connectors detect shadow IT without adoption of a browser extension and provide a significant increase to the valuable usage and security insights.

The Microsoft Entra ID Connector retrieves users lists and data from the Microsoft Graph API, enabling seamless integration with third-party apps authenticated via Microsoft credentials. It captures new users and login events to keep data accurate and current. This connector also ensures data integrity and security because it is configured via OAuth with read-only permissions.

• Microsoft Entra ID accounts: Provides an up-to-date list of Microsoft Entra ID users.
• Third-Party app discovery: Offers visibility into tools connected via "Login with Microsoft," enabling organizations to track app usage and identify potential security risks, particularly in environments with numerous applications.

Considerations

• Based on your organization’s size, the initial collection of data may take some time, up to an hour. 

To configure the connector:

1. Log in to the JumpCloud Admin Portal.
2. Go to SECURITY MANAGEMENT > SaaS Management.
3. In SaaS Management settings, go to the Connector tab and select + Add Connector.
   

4. Select Entra ID and click Connect. 
5. Enter a name and click Connect.
   
6. Follow the redirect prompts from Microsoft.
   
7. You will now see Entra ID in your list of Connectors.

Required Permissions

• Read all users' full profile: Allows JumpCloud to list the users in your directory.
• Read applications: Allows JumCloud to list OAuth permissions in your directory.
• Read directory data: Allows JumCloud to list OAuth permissions in your directory.
• Manage access to data you have given it access to: Manage OAuth token.

Uninstall/Remove

• On the Connector’s detail page, click on Delete Connector and follow the prompts.