Azure Integration
Overview:
This article will cover the integration process between Sprinto and Azure and will provide a step-by-step guide for setting up the integration.
Setting up the Integration:
Step 1: Login to Sprinto (https://app.sprinto.com)
Step 2: Under Security Hub, click on Settings and open Available Integrations
Step 3: Click on connect next to Azure under Cloud Providers, the below app drawer will appear.
There are 2 ways to integrate Azure using Azure Powershell or manually setting up the integration.
The below steps will help you set up the integration between Sprinto and Azure using Azure Powershell.
1. Enter the subscription name in the box, you can find your subscription name from Account > Subscriptions on your Azure console.
2. Click on Continue.
3. Under Step A click on Copy Powershell Code
4. Open Powershell and paste the code, kindly refer to the screenshot below to create the sprinto-auditor-role.
5. Search for App Registrations and click on sprinto-auditor-app as highlighted below.
6. Click on API permissions and click on Grant admin consent for Default Directory.
7. Move over to Step C and copy the Powershell code and paste it in Powershell to get JSON result. Copy the JSON result.
8. Paste the JSON in the Step 2 box and Click on Connect.
The below steps will help you set up the integration between Sprinto and Azure manually.
1. Under Security Hub goto settings on the left hand side bottom of the screen on the black menu.
2. Click on Available Integrations
3. Under Cloud Providers click on connect next to Azure, in the pop up window are the steps to set up the integration as mentioned below.
Log in to your Azure account console, go to subscriptions and pick the subscription ID and keep it.
Go to app registrations
Click on "New registration"
In the field labelled "Name", enter the following information sprinto-auditor-app
Leave the Supported account types to default value(which is Accounts in this organizational directory only)
Click on Register, it will create and land you on the new registration page
Copy Application ID and Directory ID, as we'll need them later
Click on "Certificates and Secret" and create a new Client Secret
Provide Sprinto Secret as input for Description
Set 24 months as expiry Date
Click on Add, it will create a new secret. Copy the Secret Value which got created
Click on "API Permissions" and then click "Add a permission"
Click on Microsoft Graph
Click on Application Permissions
Scroll down to "Directory" permissions section
Select "Directory.Read.All" (Sprinto needs this permission to read all users, groups and apps )
Click on "Add Permissions" Button
Go back to subscriptions, and select the subscription
Click on "Access Control (IAM)"
Add a role assignment
Select Reader Role, and click Next
Click on "Select Members"
Search for "sprinto-auditor-app", and select it
Click on "Review + assign" (Leave remaining option(s) as it is)
Refresh the role assignment list
Click on "sprinto-auditor-app"
Select "Permissions" tab
Click on "Grant admin consent for Default Directory"
4. As highlighted in the screenshot above, check the box (I have registered new app and gave appropriate permissions.) and click on Connect with Azure.
5. On the next page you will need to fill in the below details, please refer to the screenshot below.
6. Enter the Directory ID and Application ID which was saved earlier, refer to step 3 above.
7. Next enter the Application Client Secret which was saved earlier, refer to step 4 above.
8. Next enter the Subscription ID which was saved earlier, refer to step 1 above.
9. Click on Connect Azure and the integration will be set up.
Once the above steps are completed the integration will be up and running and in the next 24 hours Sprinto will be able to sync data and start reporting the same on the platform, please feel free to reach out to Sprinto Support at [email protected] in case you face any challenges.
Last updated