Adding an Azure Cloud Infrastructure Connection Jessica Setting up Cloud Infrastructure Sync with Azure Cloud takes less than 15 minutes. Once complete, we begin collecting your IPs and a self-published report is generated within 3-5 business days. We’ll scan your infrastructure multiple times per day and will make any updates that are consistent after two consecutive 24 hour periods. Assets added to infrastructure when a connection is set up have a 60-day grace period before they impact grading. Only Admin can manage infrastructure, including: Add new Cloud sync connections. Resume or delete in-progress connections. Availability: Cloud Infrastructure Sync is currently available only for subscriptions in Global Azure (also known as Azure Public or Azure Commercial). It is not currently available in sovereign or national cloud environments such as Azure Government or Azure China. See user permissions. PrerequisitesSetup requires administrator access to your Azure account.Setting up cloud sync without the correct permissions results in an error 401 Unauthorized.Step 1: Add Account Info Navigate to the Cloud Infrastructure Sync page in the Attack Surface section. Select the Add Connection dropdown. Select Microsoft Azure. Enter a name for the connection. Optionally, you may also enter a description. The name and description identify the connection; the self-published company can have a different name, and will be named in step 2. Select Continue. Step 2: Confirm Self-Published CompanyA new self-published company based on the Azure infrastructure in the account you added will be created. This way, you can have a self-published company and rating for your Azure infrastructure.Self-published companies are managed like any other subsidiary in your Ratings Tree. They’re classified as company-provided assets because the IPs are provided via an automated sync with your company. Select a parent company for the self-published company. Enter a name for the self-published company, e.g., “Saperix, Inc. Azure.” Enter the primary domain associated with the parent. Enter a description for the self-published company, e.g., “Saperix, Inc. Azure Infrastructure.” Select a visibility setting for the self-published company. Cloud Infrastructure Sync assets impact your rating regardless of your choice during setup. Select Continue. Step 3: Set Up Sync PermissionsSet up permissions for a single Azure account or multiple accounts (e.g. all accounts).Set up a single account scan or any number of accounts you’d like to add.The setup includes the minimum required permissions using the Azure default roles. We recommend leaving them as-is, but you may change or remove them as needed. Instructions on how to further reduce the permissions are on the guide. Changing permissions may affect the ability to monitor your cloud infrastructure. Download the Configuration Instructions. Download the Configuration File (PEM). Complete the steps in the instructions. Select Finish Adding Connection. February 17, 2026: Updated availability information. May 2, 2025: Error 401. April 11, 2025: Updated recommendations for Set Up Sync Permissions. February 20, 2025: Added grace period. Related articles Attack Surface: Cloud Infrastructure Sync Adding an AWS Cloud Infrastructure Connection Adding a GCP Cloud Infrastructure Connection Self-Published Companies Finding Behavior Feedback 0 comments Please sign in to leave a comment.