Get the customer to give you MS account global admin on their tenant
Nessus doc's don't quite match up to MS interface as MS interface is changing all the time:
https://docs.tenable.com/integrations/Microsoft/Azure/Content/ConfigureAzureComplianceAudit.htm?Highlight=microsoft%20365
Log into portal.azure.com (azure.microsoft.com)
Setup on OTP portal and update boost
Log into the customer tenant
Copy tenant ID from Home -> overview into a notepad
Click on active directory (entra ID triangle icon)
App registrations on the left
Click the + New App registration button
Client credentials -> Add a certificate or secret
+ New client secret
Give name
Set expire
Copy value and secret ID *** IMPORTANT it will disappear and you will have to start again
ID looks like 7777701d-xxxx-yyyy-zzzz-6b6a1c969999 (don't think you need this but record anyway)
value is the secret key
Get the app ID from the app registrations and search Nessus
put them in a safe notepad with tenant ID (will need later)
To find the app reg again
Click app registrations, all applications and search your app reg name "Nessus"
Home -> Entra ID -> customer -> roles and administraors -> all roles ->
Search Global Reader
Right click description
Assignments on the lef
+ Add assignments
Add to NessusScan app reg
Create new app
Get app ids + keys
Create a new client secret
You need to save the secret when it appears as it only displays once
Microsoft Graph
Home -> Microsoft Entra ID > App Registrations > Your Application > API Permissions
Permissions -> applications -> read all (reader role)
Expand all and tick Read.All
- select key
- Tenant ID (get from home overview)
- app id (app registrations page)
- Client secret (secret value)
No comments:
Post a Comment