Back to Website
  1. Knowledge Base
  2. Getting started
  3. Connectors

Connector for Azure

Alexander Matsson
Modified on: Mon, 9 Dec, 2024 at 11:07 AM

How to connect?

To connect with Azure, go to https://detectify.com/app/connectors/add-connector and click on Azure.

Next, follow these steps in the Azure platform:

  1. Generate an App Registration for the given Active Directory.

  2. Navigate and select the created App Registration to view its overview.

  3. Under Essentials, you will find Tenant ID and Client ID. Copy them and paste them in the Add connector flow in the Detectify tool.

  4. In the same view navigate to Certificates and Secrets under Manage, in the side menu.

  5. Choose the Client Secrets tab and create a New Client Secret.

  6. Copy the Value of the newly created Client Secret and paste it in the Detectify tool. It will only be visible at its creation.

  7. Now navigate to the Subscription app and choose Access control (IAM) from the side menu. 

  8. Click on Add and then add a custom role. In the JSON-tab, under “actions”, add one of the following snippets, you have two options:

    1. A. Import all resources from all your subscriptions
      To do so, leave the Subscription ID field blank and make sure that the API roles have the following permissions:
          "actions": [
              "Microsoft.Network/dnszones/read",
              "Microsoft.Network/dnszones/*/read",
              "Microsoft.Resources/subscriptions/read"
          ],

    2. B. Restrict resources with the Subscription ID
      Only give DNS read permissions to the API role:
          "actions": [
              "Microsoft.Network/dnszones/read",
              "Microsoft.Network/dnszones/*/read"
          ],

  9. Still, under Access Control (IAM), click on Add and add a role assignment.

  10. Find and select the newly created custom role.

  11. Assign access to “User, group or service principal”.

  12. Click on select members and start typing the name of the App Registration you have previously added. Select it. Then finalize with Review + Assign.

  13. Still in the Subscription app, navigate to the overview, in the side menu

  14. Copy the Subscription ID of the subscription linked to the given Active Directory and paste it in the Detectify tool.

  15. Lastly, give the connector a descriptive name.


When the connector is created, it will be seen in the list of connectors on the connectors page. Domains stored in Azure will be synced with your Detectify team continuously. You can also manually sync by clicking the Action menu on your Azure connector in the list of connectors and clicking Schedule import now.


© 2024 detectify | Go hack yourself.