In order to seamlessly integrate ArmourZero's Cloud Infrastructure scan to your Microsoft Azure, you need to prepare a SecurityAudit's user credential login.
Integration guide
1. Go to "Infra" under VULNERABILITY SCANNERS section and click "Add Cloud Account" button.
2. Click on "Microsoft Azure". Under the Create Account menu, you need to provide the SecurityAudit's user credential and click "Integrate" when done.
How to create Microsoft Azure Security Audit's user credential
1. Log in to Azure Portal.
2. Search for "App Registrations" in the top search bar and select it.
3. If you already have an application, select it from the list.
4. Navigate to "IAM & Admin" -> "Service Accounts".
5. If you do not have an application, click "New Registration", provide a name, and click "Register".
6. Go to Certificates & Secrets → Client Secrets.
7. Click "New client secret", enter a description (e.g., "Cloud Integration Key"), and select an expiration duration.
8. Click "Add", then copy and securely store the Client Secret Value (it will not be shown again).
9. Copy the Application (Client) ID and Directory (Tenant) ID from the Overview page.
10. Navigate to Subscriptions and select your active subscription.
11. Go to Access Control (IAM) → Click "Add" → "Add role assignment".
12. Select the role "Reader" or "Security Reader", then click "Next".
13. Under Assign access to, choose "User, group, or service principal".
14. Click "Select members", search for your existing or newly registered app, and add it.
15. Copy the Subscription ID from the Subscriptions page.
16. Apply these credentials (Client ID, Client Secret, Tenant ID, and Subscription ID) to the ArmourZero platform to complete the integration.