# Get Required Values + Set Up Configuration to Connect Azure Cloud via Public API Log into your [**Azure Portal**](https://portal.azure.com/) and navigate to the **Microsoft Entra ID service** (Formerly known as Azure Active Directory). Select **App registration** ![](/files/tYXu57S3O6LA6lV7AyTn) Give the application a meaningful name, we need this name later. Leave the "Supported account types" default: "Accounts in this organizational directory only". Click "Register" ![](/files/cOrohzIfPgBx2074rCvN) You get redirected to the detail page of the newly created application. Here you can find and copy the **Application (client) ID** and the **Directory (tenant) ID** ![](/files/nW5aUWXiM0UAQiengAyl) At the client credentials field, click "Add a certificate or secret" ![](/files/qcpe9bPtT57jVasgw9ES) Click the "New client secret"-button, give a description for the secret and set the expiration date to 2 years (730 days / 24 months) ![](/files/QOHwbhOYMHyGPnbKZ66C) Copy the **Secret's Value** ![](/files/LTm3MK6opl5AyZKzyuxA) Navigate to Subscriptions, Copy the **Subscription ID** of the relevant subscription. ![](/files/SFKuJLlsqdlHsqqApxIK) You now have all the required values to add the Azure Cloud via the Public API once the application setup is complete in Azure Portal. Go to the subscription detail page. Now we need to make sure we grant access to the roles we need. Click on **"Access Control (IAM)"**. ![](/files/GAMFMT9vIKad7203Wffi) Go to the Role assignments tab & Click on **"Add"**, then **"Add role assignment"**. ![](/files/SdvEbmCH6eFOj52C0kjr) In the **"Role"**-list, search and select **"Security Reader"** & Click **"Next"**. ![](/files/eGV96PxtNO5SvUxTqVEp) Leave the **"Assign access to**"default value. Click on **"Select Members"**, search for the name of the app registration (e.g. "AikidoSecurity") you created and select it. Click **"Select"** Click **"Review + assign"** twice ![](/files/EHhSadWGEgGRqMmdfsJ7) Repeat the role assignment process for the role **"Log Analytics Reader"**. Now the application has the required roles to do the security scanning. You can now add this cloud using the public API. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.aikido.dev/cloud-scanning/connect-your-cloud/azure/get-required-values-set-up-configuration-to-connect-azure-cloud-via-public-api.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.