Getting Credentials for Cross4Security
We request you to provide credentials so our Security product can perform scans on your AZURE cloud environment. To integrate the Microsoft Azure provider to use the Cross4Security service you are required to perform some operations in Microsoft Azure. The images attached below will guide you. Please follow the instructions below.
1. Subscription Adding
If you don't have a subscription for your Azure account, you need to first add a subscription. You can follow the steps below. However, if you already have a subscription, you can skip this section.
-
Go to Azure Portal and log in to your account.
-
Go to the search bar and look for Subscriptions, then choose Subscriptions under Services.
Show the instructions with images
- Click on the Add button located at the top.
Show the instructions with images
- Choose the offer that suits you and proceed.
Show the instructions with images
- After selecting the appropriate offer, follow the steps on the page directed by Azure. After creating your profile, complete the process by verifying your identity with card authentication.
2. App Registration
-
Go to Azure Portal and log in to your account.
-
Go to the search bar and look for App registrations, then choose App registrations under Services.
Show the instructions with images
- Click New Registration on the top.
Show the instructions with images
-
Fill up the given inputs (name and supported account types) and click Register.
noteYou can choose a proper Supported Account Type as your need.
warningKeep the name information you will need it later.
Show the instructions with images
-
You will be navigated to a page that contains your Application (client) ID and Directory (tenant) ID.
CRITICAL STEPKeep Application (client) ID and Directory (tenant) ID where you can reach, you will need them for further operations in our console.
Show the instructions with images
- Click Certificate & Secrets on the left menu.
Show the instructions with images
-
Create a client secret by clicking on the New client secret button. After providing a description for your client secret, proceed to click the Add button. Choosing the longest possible duration for the "expires" option is important.
CRITICAL STEPYou will see your Value on the same page after clicking the add button. Copy and keep it somewhere you can reach later.
Show the instructions with images
3. Getting Subscription ID
- Go to the search bar and search for Subscriptions, then click Subscriptions under Services.
Show the instructions with images
-
After opening the page, copy your Subscription ID somewhere accessible for future reference.
CRITICAL STEPPlease be sure you have copied your Subscription ID somewhere you can reach later.
Show the instructions with images
4. Role Assignment
- Click Access Control (IAM) in the left menu under your subscription, then click the Add button at the top of the page and select Add role assignment.
Show the instructions with images
- Then search for the role Reader and Reader and Data Access that one of the Azure built-in roles and select it from the list. Afterward click Next button.
If you can not select two roles at the same time please proceed with one of them and then repeat the process for the second role.
Show the instructions with images
- You should be navigated to the Members tab. In that section click +Select members.
Show the instructions with images
- Search for the name of your app which we registered at App Registration. Then click Select button.
Show the instructions with images
- Afterward click Next button, which located bottom of the page.
Show the instructions with images
- If you navigated to Conditions tab, please select 'Allow user to assign all roles' option for What user can do section.
Show the instructions with images
- Click Review + assign button.
Show the instructions with images
You must get an notification that says Added Role assignment.
Be sure to follow these steps to assign both Reader and Reader and Data Access roles.
5. Administrative Role Assignment
-
Click the search bar and seacrh for Microsoft Entra ID.
-
Under Services click Microsoft Entra ID.
Show the instructions with images
- On the opened page, click on Roles and administrators from the left menu.
Show the instructions with images
- After entering the Roles and Administrators section, locate Application Administrator role in the list in front of you and click on it.
Show the instructions with images
- Click on the Add Assignments button located at the top.
Show the instructions with images
-
In the opened section, you need to find and select the application you previously registered. (The application we registered at App Registration step.)
CRITICAL STEPPlease search for the name of the application in the search bar for this process. It will not appear if you try to find it manually.
-
After finding your app, click on it and select it.
Show the instructions with images
- Finally, click on the Add button.
Show the instructions with images
6. Resource Provider Enabling
It's crucial to confirm that certain providers are registered within your subscription. Follow the steps below to verify and, if necessary, register the providers.
- Go to the search bar and look for Subscriptions, then choose Subscriptions under Services.
Show the instructions with images
-
Click on the subscription you selected when obtaining your credentials.
-
Open the Resource providers section from the side menu.
Show the instructions with images
-
In the Resource providers menu, you can use the search bar or scroll down to locate the
- Microsoft.DataFactory
- Microsoft.SignalRService
- Microsoft.AppConfiguration providers.
-
After finding the relevant providers, check the status tab to verify whether the provider is registered for the subscription.
Show the instructions with images
- If the provider is not registered, after clicking on it, select the Register button located at the top to register the provider.
Show the instructions with images
- Wait for the registration process to complete. This may take a few moments.
After changing the status of the relevant provider to Registered, you can proceed with the remaining steps.
Please note that you may require the necessary permissions or roles to register a resource provider in your Azure subscription. If you do not have the required permissions, you may need to reach out to your Azure administrator or the person responsible for managing your Azure subscription.
Please do not forget the setup your Cost Information Configuration.