Log in
Integrations/Microsoft Azure (ARM)/Setup Guide
Setup Guide

Microsoft Azure (ARM) Setup Guide

Follow the steps below to connect (where supported) or set up an export-based workflow. Either way, Aurora tracks source, timestamps, ownership, and freshness so evidence stays reusable between reviews.

At a Glance
ConnectionDirect connection
CategoryCloud
Guide3 steps
Need help?
We'll confirm what can be automated, what stays export-based, and how to keep evidence current between review cycles.

Steps

Use these as a starting point, then verify collection inside Aurora.

  1. 1
    Register an app in Entra ID and grant it Azure RBAC Reader on each subscription.
  2. 2
    Store tenant_id, client_id, client_secret. Optionally set subscription_ids to restrict scope (CSV or list).
  3. 3
    Validate by listing subscriptions and checking Activity Log diagnostic settings.

Credentials

The inputs Aurora needs to authorize and collect proof.

tenant_idclient_idclient_secretsubscription_ids

Permissions

Aurora requests only the minimum access needed for collection and checks.

Permissions depend on the selected collection mode and configured scope.