Microsoft Azure Connector

The following is not supported in Tenable FedRAMP Moderate environments. For more information, see the Tenable FedRAMP Moderate Product Offering.

The Microsoft Azure Connector provides real-time visibility and inventory of assets in Microsoft Azure accounts.

To import and analyze information about assets in Microsoft Azure, you must configure Azure to support connectors and then create an Azure connector in Tenable Vulnerability Management.

Note: If your Azure deployment includes Azure instances in the Azure China or Azure Government regions, Tenable Vulnerability Management cannot connect to those instances.

Alternatively, you can run a Nessus scanner or agent scan, both of which run plugins locally on the host.

Goal	Connector Type
Discover Microsoft Azure assets The cloud connector discovers Azure assets without assessing them for vulnerabilities. Optionally, you can scan discovered assets later using a Nessus scanner or agent scan. To analyze assets via a Microsoft Azure connector: Configure your Azure account to support your connectors, as described in Configure Microsoft Azure (Discovery Only). Create your Azure connector, as described in Create a Microsoft Azure Connector.	Discovery Connector

Goal

Connector Type

Discover Microsoft Azure assets

The cloud connector discovers Azure assets without assessing them for vulnerabilities. Optionally, you can scan discovered assets later using a Nessus scanner or agent scan.

To analyze assets via a Microsoft Azure connector:

Configure your Azure account to support your connectors, as described in Configure Microsoft Azure (Discovery Only).
Create your Azure connector, as described in Create a Microsoft Azure Connector.

Discovery Connector

Note: To manage existing Microsoft Azure connectors, see Manage Connectors. in the Tenable Vulnerability Management User Guide.

Tip: For common connector errors, see Connectors in the Tenable Developer Portal.