App discovery in Jamf Security Cloud helps administrators identify unmanaged apps and domains to ensure comprehensive access policy coverage. This feature analyzes device data traffic and provides a detailed list of the apps accessed by managed devices. For each app, it also provides a list of all of the domains that devices access when using that app. For example, the domain list for the Okta app might include example.okta.com, example.oktacdn.com, and example.oktapreview.com. You can use this information to update access policies or create new ones.

For each app, you can review the following:

  • The number of devices accessing the application's domains

  • The number of unique domains within the application

  • The number of visits across all application domains

  • The most recent activity for the application

For each domain, you can review usage data and policy name, if covered by an existing access policy.

The Device groups pane displays your device groups. You can manage your device groups in the Jamf Security Cloud portal by going to Devices > Manage. When you click on a device group, you can see a list of all apps that have been accessed by devices within that group. To find information about specific apps or domains, you can use the following methods:

  • Use the search bar to filter by device groups, keywords, app names, and domain names.

  • Sort the results by the associated access policy name, number of devices, number of domains, number of visits, or last event date.

  • Enable Hide all domains already included in a policy to view only domains that are not yet managed by an access policy.

To use app discovery in your Jamf Security Cloud portal, go to Policies > Access > App discovery or click App discovery on the Access policy page.