With the Microsoft Azure subscription integration, you can connect Azure subscriptions to Plerion. This enables Cloud Security Posture Management (CSPM) for continuous configuration checks, and optionally Cloud Workload Protection Platform (CWPP) to scan workloads for vulnerabilities.Documentation Index
Fetch the complete documentation index at: https://docs.plerion.com/llms.txt
Use this file to discover all available pages before exploring further.
Prerequisites
-
Owner role at the subscription scope
Needed to grant the Plerion App registration permissions for CSPM, and to create the resource group, managed identity, and role assignments for CWPP. -
CWPP requirements
If you plan to enable CWPP, review the Azure CWPP prerequisites. These are not needed if you only want CSPM.
Steps to add a Microsoft Azure subscription integration
Select a Microsoft Entra ID integration
Choose an existing Microsoft Entra ID integration to reuse its app registration.
Grant the app registration subscription access
- Provide access to the App registration using either the Azure CLI or Azure Portal.
- If enabling CWPP, select the default region where Plerion will create a dedicated resource group.
Download and run the setup script
- Download the script and run it in your CLI or Azure Cloud Shell.
- This will list the available subscriptions.
- Use the associated number to select one, or press
yto install on all subscriptions.
Install CSPM roles
- Press
yto install CSPM roles on all subscriptions, or enter the subscription number to install on a specific subscription. - To skip optional CSPM roles, press
s. To install them, pressy.
Install CWPP roles (optional)
Press 
y to enable CWPP on all subscriptions, or enter a subscription number to enable it only on that subscription.Return to Plerion and verify access
- On the Plerion platform, click
Verify access. - Subscriptions with correct permissions will be displayed.
