Microsoft Azure PowerShell Script Details

The Microsoft Azure PowerShell script is used to configure Microsoft Entra ID (formerly Azure AD) for Microsoft 365®, Azure®, and Office 365 (O365) Government Community Cloud (GCC) High®. This script:

• Checks that the required prerequisites to run the script are satisfied. For example, it requires a Windows machine with PowerShell version 5.x.

  Tip: Run $PSVersionTable to verify your PowerShell version.

• Creates the Microsoft Entra ID (formerly Azure AD) application and its associated service principal.

• Assigns the required permissions to the service principal.

• (Azure monitoring only) Assigns the required roles to the service principal for monitoring the Azure subscription.

• Generates the arcticwolf-azure-ad-<target>.zip file, where <target> is office365, azure, or combined. This .zip file includes the awn-office365-azure-ad-application-credentials.txt file, containing the application (client) ID, directory (tenant) ID, and secret key values that you provide to Arctic Wolf®, so that your Concierge Security® Team (CST) can provision security monitoring.

• Launches your default web browser with the newly generated Uniform Resource Identifier (URI), to grant administrator consent for the permissions assigned to the application.

  Note: An administrator in your Microsoft Entra ID (formerly Azure AD) tenant must authenticate to this URI and accept the permissions that the application requests.

See also

• Configure Microsoft Azure for Arctic Wolf monitoring using a script