Tenable.cs Quick Reference Guide: Onboarding Microsoft Azure Accounts
This Quick Reference Guide provides the sequence of tasks required to onboard Microsoft Azure cloud accounts to Tenable.cs and to perform a cloud scan. Tenable.cs assesses your cloud infrastructure at runtime and identifies security and compliance violations.
Before you begin:
You must have the following:
Credentials for your Tenable.io user account.
An Azure subscription with sufficient permissions to register an application and assign a role with your Azure Active Directory (AD) tenant.
To establish the connection between Tenable.cs and Azure cloud, Tenable.cs requires an Azure service principal in the Azure subscription with read permissions to access the resources in the subscription. For creating a service principal, register an application through the Azure portal and then assign the Reader role to the application. To onboard the Azure service principal in Tenable.cs, provide the tenant ID, application ID, and secret key value of your application for authenticating with Azure.
After connecting your cloud accounts, configure your cloud resources and then scan these cloud resources for any violations.
The following workflow provides the high-level tasks for onboarding Azure accounts.
For a demonstration on onboarding Azure accounts, see the following video:
Provides conceptual information and instructions for using Tenable.cs.
Getting Started with Tenable.cs
Provides video resources in Tenable Product Education.