Azure Virtual Machine Scanning Setup

This functionality is currently behind feature flag and available for Scale plans only. Contact us for more information.

Why should I scan my virtual machines?

With virtual machine scanning, Aikido can scan the hard drives of your virtual machines for vulnerable packages, outdated runtimes and risky licenses.

Getting started

To enable the scanning of your virtual machines on Azure, you should first start by connecting your Azure Cloud to Aikido. To do this you can follow the steps outlined in this article.

Once your cloud is connected, you'll see a tab appear on the detail page called 'Virtual Machines'.

When you click on 'Set Up VM Scanning' we'll take you to the following page:

The setup wizard will guide you through creating a new App Registration inside of the Azure Portal with an API secret specifically for Aikido.

The API secret will be used by Aikido to make the necessary API requests to scan your resources. Aikido will notify you via email when the secret is about to expire.

Only the bare minimum of permissions are granted to the App Registration. This ensures that Aikido can perform its security checks without the risk of unintended altering of your resources.

Once you click 'save', Aikido will immediately start to discover any virtual machines in your account and scan them.