Enable Data Security for Azure Account

Add your Azure Subscription or Azure Tenant and enable data security on Prisma Cloud to scan blobs or objects in your storage account.

Add Azure Subscription

Begin here if you want to add your Azure subscription account on Prisma Cloud and start scanning the resources stored in your storage account.
  1. Enable Data Security
    to scan all your resources or you can choose to customize what you want to scan.
    1. Click the edit ( ) icon to view
      Account Overview
      .
    2. Configure
      data security for this account.
    3. Follow the instructions to get the
      Client ID
      and
      Client Secret
      from your Azure account, enter it in the
      Application (Client) ID
      and
      Application Client Secret
      fields in the Prisma Cloud UI, and click
      Next
      .
    4. Configure Scan
      to scan all your resources or you can choose to customize what you want to scan.
      • When you select
        Scan All Resources
        , Prisma Cloud will forward scan and backward scan all eligible objects in the resources for public exposure, sensitive data, and malware. The forward scan inspects any new or modified objects, and the backward scan is retrospective, which means that it inspects objects that exist in the resource. The size and number of objects that you want to scan within your resource will determine how many Prisma Cloud credits are used for Data Security.
      • When you select
        Custom Scan Resources
        , Prisma Cloud will forward scan and/or backward scan eligible objects in selected resources.
    5. After data security is successfully configured, the
      Status
      page displays a success message.
      If it takes Azure some time to grant permission to Prisma Cloud, you will see the
      Data Security is not successfully configured
      message. You can check the status after some time. If there are permission errors, see Troubleshoot Data Security Errors to resolve the error.
    6. Click
      Done
      to view Account Overview.
      After you have enabled Data Security for the Azure account, you can
      Configure Scan
      to enable scanning of additional resources or to modify the scan settings.

Add Azure Tenant

Begin here if you want to add your Azure tenant on Prisma Cloud and start scanning the resources stored in your storage account.
  1. Enable Data Security
    to scan all your resources or custom resources in your Azure tenant.
    1. Navigate to
      Settings
      Cloud Accounts
      Azure
      .
    2. Click the edit ( ) icon to view
      Account Overview
      .
    3. Configure
      data security for this account.
    4. Follow the instructions to get the
      Client ID
      and
      Client Secret
      from your Azure account, enter it in the
      Application (Client) ID
      and
      Application Client Secret
      fields in the Prisma Cloud UI, and click
      Next
      .
    5. Configure Scan
      to scan all your resources or you can choose to customize what you want to scan.
      • When you select
        Scan All Resources
        , Prisma Cloud will forward scan and backward scan all eligible objects in the resources for public exposure, sensitive data, and malware. The forward scan inspects any new or modified objects, and the backward scan is retrospective, which means that it inspects objects that exist in the resource. The size and number of objects that you want to scan within your resource will determine how many Prisma Cloud credits are used for Data Security.
      • When you select
        Custom Scan Resources
        , Prisma Cloud will forward scan and/or backward scan eligible objects in selected resources.
    6. After data security is successfully configured, the
      Status
      page displays a success message.

Recommended For You