Skip to main content

Cloud

Prerequisites for Onboarding Azure

Review these prerequisites before you begin onboarding your Azure tenants or subscriptions.

Before you begin onboarding Azure

Once you review these prerequisites, return to Onboarding Azure for next steps.

  • Log into an Azure account. The onboarding wizard flow assumes that you are already logged into an Azure account.

  • The default installation assumes that you have Owner access or the User Access Administrator Role for assigning the Reader Role at the Tenant scope to complete the Azure Entra ID App registration. Check your permissions for the subscription or tenant you are onboarding, using the Azure portal Access Control (IAM) page. If you do not have access, see Onboard an Azure Cloud Tenant - Guided Setup and Onboard an Azure Cloud Subscription - Guided Setup.

  • Know your parent management group (tenant and/or subscription) IDs that you want to onboard. They can be found under the Management Groups in the Azure portal. The tenant ID is also known as the parent management group ID.

  • If you are restricting public access to flow logs, make certain ports and IP addresses available to Illumio Cloud. See Azure Flow Log Access Illumio Cloud IP Addresses.

Required Permissions

If you use the guided method described in Onboard an Azure Cloud Tenant - Guided Setup and Onboard an Azure Cloud Subscription - Guided Setup, set required permissions using the Azure console.

See Permissions for Onboarding Azure.