Microsoft Azure CSPM — Script Configuration

Updated Nov 2, 2023

Configure Microsoft Azure for Arctic Wolf CSPM using a Terraform script

You can configure Azure® for Arctic Wolf® Cloud Security Posture Management (CSPM) using a Terraform® script.

Note: Multi-subscription and multi-tenant configurations are not supported.

Requirements

Steps

For each subscription or tenant you want to scan, complete these steps:

  1. Configure the CSPM Terraform script.
  2. Provide your Azure credentials to Arctic Wolf.

Step 1: Configure the CSPM Terraform script

  1. Sign in to the Azure Portal.

  2. In the navigation menu, click Cloud Shell.

  3. If this is your first time using Azure Cloud Shell, complete these steps:

    Note: This may result in subscription fees.

    1. Select the subscription used to create the storage account and file share.
    2. Click Create storage.
  4. Choose either Bash or PowerShell as your command line environment.

  5. Run this command to verify that you are using the Azure subscription you want to run Terraform with:

    Note: If the Azure subscription is incorrect, see the Microsoft documentation for Terraform configuration in Azure Cloud Shell for steps to authenticate with a different subscription.

    az account show
  6. Run this command to initialize Terraform:

    terraform init
  7. Run these commands to confirm that the module is configured correctly:

    terraform validate
    terraform plan
    terraform apply

Step 2: Provide your Azure credentials to Arctic Wolf

  1. Sign in to the Arctic Wolf Unified Portal.

  2. In the menu bar, click Telemetry Management > Connected Accounts.

  3. Click Add Account +.

  4. On the Add Account page, in the Account Type list, select Cloud Security Posture Management.

  5. In the Cloud Services list, select Azure CSPM.

  6. On the Add Account page, configure these settings:

    Tip: To retrieve these values at any time, see Retrieve environment values for more information.

  7. Click Test and submit credentials.

After your Concierge Security® Team (CST) adds this account to your scan configuration, the connected account changes to Healthy.

Next steps

See also