Enable Traffic for an Azure Account

Use the following procedure to enable traffic visibility for an Azure account from the Setup wizard:

Procedure

Step 1

In the Multicloud Defense Controller portal click Setup in the left navigation bar.

Step 2

In the setup wizard, click Enable Traffic Visibility.

Step 3

Enter the following information into the modal:

  1. CSP Account - Use the drop-down menu to select the cloud service provider account to which Multicloud Defense Controller deploys the Service VPC/VNet.

  2. Region - Use the drop-down menu to select the region where the cloud service provider you selected is located.

  3. Copy and run the script. Note that if you are re-onboarding an Azure account and are reusing a cloud storage bucket, the script does not automatically create a new storage bucket. It is possible to use the default, or preexisting storage bucket, but otherwise you must create a new storage bucket in the Azure dashboard or manually edit this script command prior to executing to include the name of the storage bucket you want the flow logs for your account to be stored in.

  4. Virtual Network (VNet) - Select at least one VNet for traffic to be visible on. Scroll through the table of available VNets that are applicable to the type of cloud service provider you selected and check the appropriate one. Note that if you do not immediately see the VNet, click the Refresh icon to refresh the current list.

    Note

    You may see existing NSG Flow Logs, which will be supported by Multicloud Defense until it is deprecated by Microsoft Azure. You will no longer be able to create new NSG Flow Logs. Instead, you can create VNet Flow Logs.

  5. Storage Account - Enter the full Resource ID in the selected region above.

Step 4

Click Next.

What to do next

Secure your account.