Search

Technology Integrations

Microsoft Azure
Microsoft Azure Onboarding Integration

Microsoft Azure

Microsoft Azure Onboarding Integration

Keeps your Azure public IP addresses, and hostnames from DNS zones, updated as assets in edgescan.

How to connect Azure to edgescan

1. Create an application for edgescan in Azure

  • Login to the Azure management portal. Search for App registrations using the search functionality and click to get to the App

Microsoft Azure - App Registrations

  • Click on the New registration button.

Microsoft Azure - New Registration

  • Enter a name (we recommend ‘edgescan’ or something similar) then click Register.

Microsoft Azure - Register an application

2. Get the Application ID, Application secret key, Directory ID and Subscription ID from Azure

  • We require four access keys to connect your Azure account to edgescan:
  • ‘Application (client) ID’ of the Azure application you just created.
  • ‘Directory (tenant) ID’ from Azure Active Directory.
  • Application secret key’ of the Azure application you just created.
  • ‘Subscription ID’ of your Azure subscription.
  • You need to get them from various sections of the Azure portal, so it’s probably best to open a text document that you can copy them into. It should all be straight-forward if you follow the steps below, so hang in there!

Application (client) ID

  • Click on the ‘edgescan’ application that we just created
  • Click Overview and take a note of the Application (client) ID.

Directory (tenant) ID

  • You can also get the Directory (tenant) ID from this screen so let’s note that one down too.

Microsoft Azure - Edgescan Integration

Application secret key (in Azure you’re looking for the secret ‘VALUE’

  • Now scroll down and click on Certificates & secrets in the left navigation panel.
  • Click on New client secret:

Microsoft Azure - Edgescan Certificates & secrets

  • Enter a description (e.g. ‘edgescan’)
  • Set an expiry date (i.e. how long you want the secret to be valid for).
    (Please note that edgescan will no longer be able to access your Azure account when the secret expires.)

Microsoft Azure - Edgescan Integration - Add client secret

  • Now click Add and note down the secret ‘ VALUE ‘. ( Not the Secret ID).
    (This is the Application secret key .)
    Important: Please note that you won’t be able to see that Application secret key again after you’ve left this screen, so make sure you copy and paste it now!

Microsoft Azure - Edgescan Integration - Client secret

  • Subscription ID
  • Search for ‘Subscriptions’ using the search functionality and click to see the ‘Subscriptions’ menu.

Microsoft Azure - Edgescan Integration - Subscriptions

  • Take note of your Azure Subscription ID:

Microsoft Azure - Edgescan Integration - Subscription ID

3. Create a role

  • Select Access control (IAM) from the left menu inside the subscription detail page.
  • Click Add.
  • Then click Add role assignment .

Microsoft Azure - Edgescan Integration - Access control

  • A new menu will appear on the right of the screen. Type Reader into the search box.
  • Click on the Reader item in the drop-down. (We require read-only access in order to fetch your public IP addresses and DNS hostnames.)

Microsoft Azure - Edgescan Integration - Add role assignment

  • Assign access to: Ensure Azure AD user, group, or application is selected.
  • Select: Search for the application we created earlier (e.g. ‘edgescan’ or whatever you chose to name it). Select that application, and click Save.

Microsoft Azure - Edgescan Integration - Add permissions

4. Take note of the Application ID, Application secret key, Directory ID and Subscription ID and provide them to edgescan.