Cloud Connectors - Azure

To create and configure a cloud connector with Azure, you will first need to create and configure a storage account in Azure.

1. In the Microsoft Azure portal, go to Storage Accounts.

2. Click + Create to create a new storage account.

3. Enter a Storage account name.
4. Click Next: Advanced at the bottom.
5. On the next screen, make sure Enable hierarchical namespace is selected. Note that Defender Max only supports Gen2 endpoints.

6. Click Next at the bottom and go through all of the remaining tabs. Leave the default selections there.
7. In Defender Max, go to Connectors > Cloud > + New Cloud Connector.

8. Enter a Name for the connector; for example, azureblob_in.
9. Enter a Description.
10. In the Folder field, you can set this to bring in or out only files from a designated folder.

11. Click Next.
12. Here we’ll select Azure as the cloud service.

13. Click Next.
14. You can now bring over the information that you created in Azure.

15. In Defender Max, the Account Name field is the Storage account name you created in Azure.
16. The Account Key field is the Key from Azure.
17. The Container field is taken from the Containers section of Azure. Create a container there using the Containers tab, and then use that name in the Container field in Defender Max.

18. Click Test to make sure the test passed.
19. You will now see your Azure connector in the Cloud Connectors page.
    [block:image]
    {
    "images": [
    {
    "image": [
    "https://files.readme.io/9a34374-AzureStorageAccounts6.png",
    null,
    null
    ],
    "align": "center"
    }
    ]
    }
    [/block]
20. Go back to the flow policy in Defender Max (Policies > Flow Policies), select the relevant source and destination.
21. Click Apply. You will now connect to Azure, where you can take the file, check for viruses, and move the file to (for example) your organization’s SFTP server. You can check the Traffic Log to see if the file was successfully transferred.