Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

To onboard a new Azure account into Data Theorem's API security product and grant access to your configuration, you need to create a new Azure AD (Active Directory) application.

 This Azure AD application will allow our service to list (with limited read access) your configuration in order to discover resources and APIs.

Step 1: Creating the Azure AD application

To create this new Azure AD application, open a new tab and: 

  1. Login into your Azure Account through the Azure Portal
  2. Navigate to the Azure Active Directory page
  3. Select App registrations
  4. Select New application registration
  5. For the Name field enter
  6. DataTheorem
  7. For the Application type field select Web app
  8. For the Sign-on URL field enter
  9. https://securetheorem.com/
  10. Click Create

Step 2: Assigning the reader role to the Azure AD application

Now that we have a new Azure AD application we need to assign read-only access.

  1. Navigate to the All services page
  2. Select Subscriptions
  3. Select the subscription that corresponds to the environment that you want to give Data Theorem access to
  4. Select Access control (IAM)
  5. Select Add and from the dropdown select Add role assignment
  6. For the Role field select Reader
  7. For the Assign access to field select Azure AD user, group, or service principal
  8. For the Select field select the previously created App registration “DataTheorem”
  9. Click Save

Step 3: Getting the Azure AD application credentials

After creating the read-only role we need to copy over the credentials so Data Theorem can access your environment. Once done you should have the following:

  • Directory ID
  • Application ID
  • Authentication key (DO NOT share with anyone else)

Obtaining your Directory ID

  1. Navigate to the Azure Active Directory page
  2. Select Properties
  3. Copy out the Directory ID, this is also known as your Tenant ID

Obtaining your Application ID and Authentication key

  1. Navigate to the Azure Active Directory page
  2. Select App registrations
  3. Make sure you are viewing All apps and not just My apps
  4. Search for “DataTheorem”
  5. Select the app registration “Data Theorem”
  6. Copy out the Application ID
  7. Select Settings
  8. Select Keys
  9. Create a new Key by entering a new entry in the table
    1. For the Description field enter “apikey”
    2. For the Expires field select “Never expires”
    3. Click Save
  10. Copy out the generated Authentication key for the “DataTheorem” entry

Extra References

 

  • No labels