Microsoft Azure Monitoring - PowerShell Script Details
Updated Oct 26, 2023Microsoft Azure PowerShell Script Details
The Microsoft Azure PowerShell script is used to configure Microsoft Entra ID (formerly Azure AD) for Microsoft 365®, Azure®, and Office 365 (O365) Government Community Cloud (GCC) High®. This script:
-
Checks that the required prerequisites to run the script are satisfied. For example, it requires a Windows machine with PowerShell version 5.x.
Tip: Run
$PSVersionTable
to verify your PowerShell version. -
Creates the Microsoft Entra ID (formerly Azure AD) application and its associated service principal.
-
Assigns the required permissions to the service principal.
-
(Azure monitoring only) Assigns the required roles to the service principal for monitoring the Azure subscription.
-
Generates the
arcticwolf-azure-ad-<target>.zip
file, where<target>
isoffice365
,azure
, orcombined
. This.zip
file includes theawn-office365-azure-ad-application-credentials.txt
file, containing the application (client) ID, directory (tenant) ID, and secret key values that you provide to Arctic Wolf®, so that your Concierge Security® Team (CST) can provision security monitoring. -
Launches your default web browser with the newly generated Uniform Resource Identifier (URI), to grant administrator consent for the permissions assigned to the application.
Note: An administrator in your Microsoft Entra ID (formerly Azure AD) tenant must authenticate to this URI and accept the permissions that the application requests.