ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Directions on how to activate Azure while documentation is updated
Resolution
Prerequisites
Azure Account
Have admin access to the Azure account
CloudSoc API Key
Create an API key and note down Key ID, Key Secret and Tenant. For more information refer to Creating an API key
Configuring the Azure Securlet
To acitvate an Azure securlet login to the CASB tenant and go to Store | Microsoft Azure and Click Configure This will take you to the "Microsoft Azure Configuration" window
Enter the Connection Name.
By default, all storage accounts are scanned. If you want to limit the scanning to specific storage accounts, enable Data Scanning
Once Data Scanning is enabled you then have the option to define a data scanning scope as well as exceptions to that scope
Selective Scanning only scans storage accounts that match the configuration.
Save the connection.
Download Azure PowerShell Script and refer to steps below on how to Run PS Script in Azure Account. Note: The connection will be visible in connections in draft state till administrator runs PS Script in Azure successfully..
Once PS Script is deployed in Azure Account, accounts\subscriptions from Azure will get onboarded and Current Connections Details would be visible under Azure Connection.
Run PS Script in Azure Account
Open PS Script and update the CloudSocKeys at Line#11 $cloudsoc_public_key = "<key_id>" $cloudsoc_secret_key = "<key_secret>" $cloudsoc_tenant_id = "<tenant>"
Login to Azure Account.
Open Cloud Shell
Upload the PSScript to the Cloud Shell.
Run the script and follow the steps, it will prompt you to select specific subscription or all subscriptions.
It is completely automated, with just one manual step to provide user and directory level permissions the details is available in script itself.
PS Script generated resources
The following resources would be generated
CloudSoc App under Azure Active Directory
Event Grid Subscription (Azure Subscription) with filter to Event types, Resource Write success, Resource Delete success, Resource Action success – for selected subscription.
For all the storage accounts under selected subscription, script will create Event Subscriptions.