Snow SaaS Management

SaaS Management Updates

Release date: June 30, 2025

NEW: Custom fields for Users

SaaS Management now provides the ability to define and manage custom fields for users, enabling more tailored and efficient user data tracking:

• Create and Manage Custom Fields: Admins can now create custom fields for users- such as cost center, department, or user status, directly within Snow Atlas
• Edit and Delete Fields: Custom fields can be edited (e.g., change field type or default value) or deleted when no longer needed
• Populate and View Custom Data: Can add values to custom fields and view them directly within user details, ensuring relevant information is always accessible.
• Filter, Sort, and Export: Custom fields are now available in user table views, allowing users to filter, sort, and export user data for more efficient reporting and analysis.
• Field Recommendations: When adding custom fields to users, admins are shown a list of existing fields to promote consistency and reuse across the estate.

Enhancements

Introducing Product Profiles in Adobe Product Family

SaaS Management now provides users with a clearer and more accurate view of Adobe subscription data by separating product profiles from subscription names and improving user aggregation:

• Clean Subscription Display:
• Subscription names are now shown without appended product profile names, ensuring a more concise and user-friendly view (e.g., “Acrobat Pro (VIPMP)” instead of “Acrobat Pro - Product Profile Item”).
• Accurate User Aggregation:
• Users across all product profiles under a single subscription are now grouped correctly, providing a complete and accurate user list for each subscription.
• Dedicated Product Profile Tab:
• A new tab displays product profiles independently from subscriptions, allowing admins to view and manage each profile’s user count and license quota separately.

NEW Microsoft Defender: Application certification and security

Release date: June 11, 2025

We have expanded the capabilities for the Microsoft Defender connector to provide certification and security risk score for applications across your SaaS landscape:

• Application certification and security risk score added: IT certification and security data have been integrated into the Applications table and the individual application pages under the overview details for applications configured via MS Defender and recognized by DIS.
• Data compliance: You can retrieve these additional details by opting to collect them when configuring the MS Defender connector.
• Ease of application review: You now have a more complete view of application compliance and security risk information, helping you review applications in SaaS management.

Note: App certification security data will not be accessible for new applications that are awaiting recognition, and a fix for this known issue is still pending. However, for existing recognized applications that have defender data, additional information from this feature will be available.

Microsoft Entra ID: Visibility into user activity across your SaaS landscape

Release date: June 12, 2025

We have expanded the capabilities for the Microsoft Entra ID connector to provide even deeper visibility into user activity across your SaaS landscape:

• New discovery source added: A new activity type has been introduced, enabling tracking of sign-in activity across all applications configured with SSO via Entra ID and recognized by DIS.
• Improved activity coverage: This enhancement ensures comprehensive user activity tracking, even for applications:
  • With dedicated SaaS connectors that do not provide sign-in data post-consolidation.
  • That lack a dedicated vendor connector but are identified through alternative discovery sources such as browser extensions.
• Greater visibility across the board: You now have a more complete view of application usage, helping you better understand user behavior and optimize SaaS management—even in complex or hybrid environments.

Docusign: Visibility into envelope usage and user-level consumption

Release date: June 10, 2025

New capabilities added to the SaaS Docusign integration, bringing better visibility into envelope usage and user-level consumption:

• User-level consumption tracking: For the first time, you can now monitor envelope usage per user, enabling more granular insights into how Docusign is utilized across your organization.
• Department-level monitoring: Gain visibility into envelope consumption by departments, with the ability to view usage trends for both current and past months.
• Top usage insights: Instantly identify the top 3 departments with the highest envelope usage in the current month.
• Utilization analysis: Understand whether your organization is overusing or underusing the envelopes allocated to your account, helping you optimize your Docusign license spend.

User sign-in activity is tracked for Microsoft 365 applications recognized in DIS

Release date: June 2, 2025

New improvements done to the SaaS Microsoft 365 connector that enhance visibility into user activity and license optimization:

• Expanded activity tracking: The connector now captures the last sign-in activity per user per application, offering deeper insights into application usage.
• Broader application coverage: We have extended activity data collection to include additional M365-related applications such as Power BI, Visio, MS Project, and others recognized within DIS.
• Improved license insights: Enhanced visibility into O365 license usage now enables actionable insights, including cost-saving recommendations—such as identifying opportunities to downgrade from E3 to E1 licenses where appropriate.

Microsoft 365 and Entra ID Connector Update – Status and Required Actions 

Recent updates to the Microsoft 365 and Entra ID connectors in Snow SaaS Management may have impacted data aggregation for some tenants. 

Microsoft 365 Connector 

A recent update introduced enhancements that required additional Azure permissions. Some customers experienced aggregation failures. A backward-compatible fix has been deployed, and the connector is now working without requiring any changes in Azure. No immediate action is needed if aggregation has resumed. Customers are still encouraged to apply the updated permissions to take advantage of new features. 

Entra ID Connector 

An update to the Entra ID connector was released around the same time. Several tenants experienced aggregation failures due to expired client secrets in Azure. These errors returned messages such as invalid_client and HTTP 401 responses. If credentials have expired, aggregation will continue to fail until updated. 

Required Actions 

• Microsoft 365: No immediate action is needed if aggregation has resumed. Customers are encouraged to update Azure permissions to access new connector features going forward. 
• Entra ID: If aggregation is still failing, review your Azure app registration and renew the client secret if it has expired. 

Reference Guides 

• Update Microsoft 365 Connector Permissions 
• Renew Entra ID Connector Credentials 

If you need assistance or are unsure whether your connector is affected, please contact support.