Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

Adding an Azure Cloud Infrastructure Connection

Jessica

Setting up Cloud Infrastructure Sync with Azure Cloud takes less than 15 minutes. Once complete, we begin collecting your IPs and a self-published report is generated within 3-5 business days. We’ll scan your infrastructure multiple times per day and will make any updates that are consistent after two consecutive 24 hour periods. Assets added to infrastructure when a connection is set up have a 60-day grace period before they impact grading.

Only Admin can manage infrastructure, including:

  • Add new Cloud sync connections.
  • Resume or delete in-progress connections.

See user permissions.

Prerequisites

Setup requires administrator access to your Azure account.

Setting up cloud sync without the correct permissions results in an error 401 Unauthorized.

Step 1: Add Account Info

  1. Navigate to the Cloud Infrastructure Sync page in the Attack Surface section.
  2. Select the Add Connection dropdown.
  3. Select Microsoft Azure.
  4. Enter a name for the connection. Optionally, you may also enter a description. The name and description identify the connection; the self-published company can have a different name, and will be named in step 2.
  5. Select Continue.

Step 2: Confirm Self-Published Company

A new self-published company based on the Azure infrastructure in the account you added will be created. This way, you can have a self-published company and rating for your Azure infrastructure.

Self-published companies are managed like any other subsidiary in your Ratings Tree. They’re classified as company-provided assets because the IPs are provided via an automated sync with your company.

  1. Select a parent company for the self-published company.
  2. Enter a name for the self-published company, e.g., “Saperix, Inc. Azure.”
  3. Enter the primary domain associated with the parent.
  4. Enter a description for the self-published company, e.g., “Saperix, Inc. Azure Infrastructure.”
  5. Select a visibility setting for the self-published company. Cloud Infrastructure Sync assets impact your rating regardless of your choice during setup.
  6. Select Continue.

Step 3: Set Up Sync Permissions

Set up permissions for a single Azure account or multiple accounts (e.g. all accounts).

Set up a single account scan or any number of accounts you’d like to add.

The setup includes the minimum required permissions using the Azure default roles. We recommend leaving them as-is, but you may change or remove them as needed. Instructions on how to further reduce the permissions are on the guide. Changing permissions may affect the ability to monitor your cloud infrastructure.

  1. Download the Configuration Instructions.
  2. Download the Configuration File (PEM).
  3. Complete the steps in the instructions.
  4. Select Finish Adding Connection.
  • May 2, 2025: Error 401.
  • April 11, 2025: Updated recommendations for Set Up Sync Permissions.
  • February 20, 2025: Added grace period.

Related articles

Feedback

0 comments

Please sign in to leave a comment.