Home

Awesome

CloudGraph Azure Provider

Scan cloud infrastructure via the Azure SDK

<!-- toc -->

Docs

CloudGraph Readme

💻 Full CloudGraph Documentation Including Azure Examples

Install

Install the azure provider in CloudGraph

cg init azure

Authentication

Authenticate the CloudGraph Azure Provider any of the following ways:

CloudGraph needs read permissions in order to ingest your data. To keep things easy you can use the same permissions that we use internally when we run CloudGraph to power AutoCloud. Here are the Azure Docs for generating the correct Service Principal with a Client Secret (feel free to leave out AutoCloud specific configuration).

Supported Services

ServiceRelations
actionGroupresourceGroup, authRoleDefinition, eventHub, functionApp
activityLogAlertsresourceGroup
adApplicationauthRoleAssignment, adGroup, adServicePrincipal, adUser
adGroupadApplication, authRoleAssignment
adIdentitySecurityDefaultsEnforcementPolicy
adServicePrincipaladApplication, authRoleAssignment
adUseradApplication, authRoleAssignment
aksManagedClusterresourceGroup, virtualMachineScaleSet
applicationGatewayresourceGroup
appInsightsresourceGroup
appServiceEnvironmentresourceGroup, virtualNetwork
appServicePlanresourceGroup, appServiceWebApp
appServiceWebAppresourceGroup, appServicePlan, storageAccount
arcConnectedClusterresourceGroup
authRoleAssignmentadApplication, adGroup, adServicePrincipal, adUser, authRoleDefinition
authRoleDefinitionactionGroup, authRoleAssignment
autoProvisioningSettings
backupInstancebackupVaults, resourceGroup
backupPolicybackupVaults, resourceGroup
backupVaultsbackupInstances, backupPolicies, resourceGroup
cdnCustomDomainscdnEndpoints, resourceGroup
cdnEndpointscdnCustomDomains, cdnOrigins, cdnOriginGroups, cdnProfiles, resourceGroup
cdnProfilescdnEndpoints, resourceGroup
cdnOriginscdnEndpoints, cdnOriginGroups, resourceGroup
cdnOriginGroupscdnEndpoints, cdnOrigins, resourceGroup
cognitiveServicesAccountresourceGroup
containerRegistrykeyVault, resourceGroup
cosmosDbresourceGroup
dataCollectionRuleresourceGroup, logAnalyticsWorkspace
dataFactoryintegrationRuntime, resourceGroup
databaseManagedSqlInstanceresourceGroup
databaseMySqlresourceGroup, mySqlServers
databasePostgreSqlresourceGroup, postgreSqlServers
databaseSqlresourceGroup, sqlServers
databaseSqlVmresourceGroup
dataLakeStorageAccountsresourceGroup
diagnosticSettingsresourceGroup, storageAccount
diskresourceGroup, virtualMachine
dnsresourceGroup
eventGridresourceGroup
eventHubresourceGroup, actionGroup, storageAccount
expressRouteGatewaysresourceGroup
fileShareresourceGroup, storageAccount
firewallpublicIp, virtualNetwork
functionAppresourceGroup, actionGroup
integrationRuntimedataFactory, resourceGroup
keyVaultresourceGroup
loadBalancerloadBalancer, publicIp, resourceGroup, virtualNetwork
logAnalyticsSolutionresourceGroup, logAnalyticsWorkspace
logAnalyticsWorkspaceresourceGroup, dataCollectionRule, logAnalyticsSolution
logProfilesstorageAccount
machineLearningWorkspacesresourceGroup
metricAlertresourceGroup
mySqlServersresourceGroup, databaseMySql
networkInterfacepublicIp, resourceGroup, securityGroup, virtualMachine, virtualNetwork
networkWatcherresourceGroup
policyAssignment
postgreSqlServersresourceGroup, databasePostgreSql
privateDnsresourceGroup
publicIpnetworkInterface, resourceGroup
publicIpPrefix
recoveryInstancesrecoveryVaults, resourceGroup
recoveryPoliciesrecoveryVaults, resourceGroup
recoveryVaultsrecoveryInstances, recoveryPolicies, resourceGroup
redisCachesresourceGroup
replicationAppliancesresourceGroup
replicationCentersresourceGroup
replicationNetworksresourceGroup
replicationPoliciesresourceGroup
resourceGroupall services
routeFilter
routeTable
securityAssessments
securityContacts
securityGroupnetworkInterface, resourceGroup
securityPricings
securitySettings
serviceBusresourceGroup
sqlServersdatabaseSql, resourceGroup
storageAccountdiagnosticSetting, logProfiles, resourceGroup, storageContainer
storageBlobresourceGroup, storageContainer
storageContainerresourceGroup, storageAccount
synapseBigDataPoolsresourceGroup, synapseWorkspaces
synapseSqlPoolsresourceGroup, synapseWorkspaces
synapseWorkspacesresourceGroup, synapseBigDataPools, synapseSqlPools
trafficManagerresourceGroup
virtualMachinedisk, networkInterface, resourceGroup, virtualNetwork, virtualMachineScaleSet
virtualMachineScaleSetresourceGroup, virtualMachine, aksManagedCluster
virtualNetworkappServiceEnvironment,networkInterface, resourceGroup virtualMachine

Development

Install all the dependencies:

yarn

Generate types and compile:

yarn build

Testing

<!-- testing --> <!-- testingstop -->