Audit Microsoft Azure in Tenable Nessus

Tenable offers the ability to audit the Microsoft Azure Cloud environment to detect misconfigurations in the cloud environment and account settings using Tenable Nessus. Complete the following steps to Audit Microsoft Azure in Tenable Nessus.

For more information on the Microsoft Azure audit, see the Microsoft Azure Audit Compliance Reference in the Compliance Checks Reference.

Before you begin:

Note: No pre-authorization is needed from Microsoft to perform the audit, but a Microsoft Azure account is required.

To Audit Microsoft Azure in Tenable Nessus:

  1. Log in to Tenable Nessus.
  2. In the upper-left corner, click the Menu button.

    The left navigation plane appears.

  3. In the left navigation plane, in the Vulnerability Management section, click Scans.

    The Scans page appears.

  4. In the upper-right corner of the page, click Create a Scan.

    The Select a Scan Template page appears.

  5. In the Compliance section, select the Audit Cloud Infrastructure template.

    The Audit Cloud Infrastructure page Settings tab appears.

  6. In the Name box, type a descriptive name for the scan.

  7. (Optional) In the Description box, enter information to describe your scan.
  8. Click the Credentials tab.
  9. In the Categories section, click Microsoft Azure.

    The Microsoft Azure options appear.

  10. Click the Authentication Method drop-down menu to select your preferred authentication method: key or password.
  11. Configure the credentials for your selected authentication method.

  1. Click Compliance.

  2. Click Microsoft Azure.

    Tenable offers pre-configured compliance checks and provides the ability to upload a custom Azure audit file.

    Note: For information on creating a custom audit, see the Microsoft Azure Audit Compliance Reference in the Nessus Compliance Checks Reference Guide.

  3. Click each compliance check you want to add to the scan.
  4. If you choose to add a custom audit file, click Add File and select the file to upload.

  1. Click Save.

    The credential saves and the My Scans page appears.

Note: For additional information on configuring Tenable Nessus scans, refer to the Tenable Nessus User Guide.