# AQUILA CSPM - Azure Integration This manual explains how to get started monitoring the security posture of your Azure CSP using the Cloud Security Posture Management (CSPM) feature. #### **Requirements**

- The user who gives the CSPM integration permissions in Azure must be an Azure subscription **admin**.

#### **Setup** **Service principal with client secret** Before using this method, you must have set up a **Microsoft Entra application** and **service principal that can access resources**. Please go **[here](https://learn.microsoft.com/en-us/entra/identity-platform/howto-create-service-principal-portal#get-tenant-and-app-id-values-for-signing-in)** before following the steps below.

1. The following information is required. 1. Directory **(tenant) ID** and **Application (client) ID** - To get these values: - Go to the **Registered apps** section of Microsoft Entra ID. - Click on **New Registration**, name your app and click **Register**. - Copy your new app’s **Directory (tenant) ID** and **Application (client) ID**. 2. **Client Secret** - In Azure portal, select Certificates & secrets, then go to the Client secrets tab. Click New client secret. - Copy the new secret **"Value"**. 2. Return to Azure. Go to your Azure subscription list and select the subscription or management group you want to monitor with CSPM. 3. Go to **Access control (IAM)** and select **Add Role Assignment**. 4. Select the **Reader** function role, assign access to **User, group, or service principal**, and select your new app.

#### **How to integrate to AQUILA CSPM Module** ##### **Pre-requisites** 1. **Access to CyTech - AQUILA** - Only users assigned the **"Owner"** or **"Admin"** role can access the Log Collector installation resources within the platform.

**To navigate to CSPM Module please follow the instructions below:**

**Step 1: Log in to CyTech - AQUILA. Click here --> [AQUILACYBER.ai](https://aquilacyber.ai/overview-v3/dashboard/maindashboard)**

**Step 2: Click on Cyber Monitoring.**

[![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/hItzqzN09q61CMZZ-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/hItzqzN09q61CMZZ-image.png) **Step 3: Choose Cloud Security Posture Management (CSPM).** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/EbsP1Kz74gmIWnyZ-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/EbsP1Kz74gmIWnyZ-image.png) **Step 4: Click the "Let's Go" or "Onboard CSPM" icon to launch installation window.** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/h53Z6TJIUeSrsoc5-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/h53Z6TJIUeSrsoc5-image.png) **Step 5: Click "Let's go" to start the integration process.** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/7DPNcbHQ3TI5nSmY-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/7DPNcbHQ3TI5nSmY-image.png) **Step 6: Choose your log collector. If you haven't installed a log collector yet choose "New Log Collector" click here -->** [Log Collector Installation](https://docs.cytechint.io/books/log-collector-installations). **If you have already have an existing log collector choose "Current Log Collector" and click "Next".** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/YmaKgMpQPUBQOutG-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/YmaKgMpQPUBQOutG-image.png) **Step 7: Click "Next" if the requirements are met.** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/9XREDs3GMrovq966-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/9XREDs3GMrovq966-image.png) **Step 8: Choose your current log collector. This will collect the logs coming from your log sources.** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/6JtsLkQBByfBwsLN-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/6JtsLkQBByfBwsLN-image.png) **Step 9: Choose Azure and click "Next" to proceed.**

[![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/emYpLrE9GwYlBYXG-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/emYpLrE9GwYlBYXG-image.png) **Step 10: Input all the required credentials from the previous Azure configurations and click "Next" to initiate the integration process. Wait for couple of minutes until a success window shows up.** [![image.png](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/scaled-1680-/rSv3hwdVltbKSxrr-image.png)](https://cytechint-docs-bookstack.s3.amazonaws.com/uploads/images/gallery/2025-06/rSv3hwdVltbKSxrr-image.png)

**Please refer to this manual for the full guidelines of our CSPM Module. *click here-->* [CyTech - AQUILA CSPM Manual ](https://docs.cytechint.io/books/log-collector-installations/page/cytech-aquila-cloud-security-posture-management-cspm-module)**

*If you need further assistance, kindly contact our support at **[support@cytechint.com](mailto:info@cytechint.com)** for prompt assistance and guidance.*