Link Azure Subscriptions

The following is not supported in Tenable FedRAMP Moderate environments. For more information, see the Tenable FedRAMP Moderate Product Offering.

Before you begin:

• Record the name of the application you created for your primary Azure subscription.

To configure linked Azure subscriptions:

Grant the secondary subscription reader role permissions for the application you created for your primary Azure subscription.

1. Log in to the Microsoft Azure portal.

2. In the left-hand menu, click All Services.

   

3. In the General section, click Subscriptions.

   

4. In the subscription table, click the applicable subscription.

   The Overview page for the subscription appears.

5. In the menu for the subscription, click Access control (IAM).

   The Access control (IAM) page appears.

6. Click the +Add button.

   A pop-up menu appears.

7. Click Add role assignment.

   

8. In the Add role assignment window, in the Role tab, search and select Reader.

   

9. In the Members tab, in the Assign access to section, select User, group, or service principal.

   

10. To select your Azure Application, click + Select Members.

    

    The Select members plane appears.

11. Search for the Azure application and select the required application from the list.

12. In the Review + assign tab, review the selected role and members.

    

13. Click Review + assign.

    The selected application gets added as Reader for the subscription.

    

What to do next:

• Create an Azure connector.