Skip to main content

Cloud

Prerequisites for Onboarding Azure

Review these prerequisites before you begin onboarding your Azure tenants or subscriptions.

Before you begin onboarding Azure

  • Log into an Azure account. The onboarding wizard flow assumes that you are already logged into an Azure account.

  • The default installation assumes that you have Owner access or the User Access Administrator Role for assigning the Reader Role at the Tenant scope to complete the Azure Entra ID App registration. Check your permissions on the Azure portal. If you do not have access, see Onboard an Azure Cloud Tenant - Guided Setup and Onboard an Azure Cloud Subscription - Guided Setup.

  • Know your parent management group (tenant/subscription) IDs that you want to onboard. They can be found under the Management Groups.

  • If you are restricting public access to flow logs, make certain ports and IP addresses available to Illumio Cloud. See Azure Flow Log Access Illumio Cloud IP Addresses.

  • Review the process to onboard the account. You can launch a CloudFormation Stack or use the Illumio YAML file as a template to create the stack.

Required Permissions

If you use the guided method described in Onboard an Azure Cloud Tenant - Guided Setup and Onboard an Azure Cloud Subscription - Guided Setup, set required permissions using the Azure console.

See Permissions for Onboarding Azure.