Governing Azure

Microsoft Azure

Overview

Turbot Guardrails is deeply integrated with Microsoft Azure.

• Guardrails provides dozens of Azure mods, with policies and controls for many Azure resource types.
• Guardrails extensive IAM integration allows you to federate Azure access and manage your Azure permissions through the Guardrails console and API.
• Guardrails event handlers/pollers keep the Guardrails CMDB up to date as Azure resources are created, modified and destroyed; allowing policy enforcement in real time.
• Guardrails shows all activity in your Azure subscriptions - you can quickly see what happened, who made the change, when the activity occurred, and exactly what changed.

Getting started with Guardrails for Azure

1. Connect Azure Resources to Guardrails. These are in the recommended order to import, but not all sections will apply to all organizations:

   • Import Azure Tenant
   • Import Azure Active Directory
   • Import Azure Subscription

2. Enable Azure Services that you will use

3. Configure Permissions Policies to allow Turbot to manage Azure permissions for your users

Further Reading

• Explore Azure Mods
• Set up Turbot Azure policies with Terraform Policy Packs
• Learn more about permissions in Guardrails