Grant the Azure Application Reader Role Permissions

The following feature is not supported in Tenable FedRAMP Moderate environments. For more information, see the Tenable FedRAMP Moderate Product Offering.

To grant an Azure application reader role permissions for an Azure Tenable Vulnerability Management connector:

1. Log in to the Microsoft Azure portal.

2. In the left-hand menu, click All Services.

   

3. In the General section, click Subscriptions.

   

4. In the subscription table, click the applicable subscription.

   The Overview page for the subscription appears.

5. In the menu for the subscription, click Access control (IAM).

   The Access control (IAM) page appears.

6. Click the +Add button.

   A pop-up menu appears.

7. Click Add role assignment.

   

8. In the Add role assignment window, in the Role tab, search and select Reader.

   

9. In the Members tab, in the Assign access to section, select User, group, or service principal.

   

10. To select your Azure Application, click + Select Members.

    

    The Select members plane appears.

11. Search for the Azure application and select the required application from the list.

12. In the Review + assign tab, review the selected role and members.

    

13. Click Review + assign.

    The selected application gets added as Reader for the subscription.

    

What to do next:

Do one of the following:

• (Optional) Link Additional Azure Subscriptions to your Azure Application.
• Create an Azure connector.