Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Azure Prerequisites and Permissions

The following prerequisites are required to configure Skyhigh CASB for Microsoft Azure.

  1. A paid, standard-tier Azure subscription. 

IMPORTANT: Free and Azure AD subscriptions are not supported. Free tier Azure subscriptions don't generate recommendations for Configuration Audit policies, which prevents corresponding policies in Skyhigh CASB from having an associated incident. AD subscriptions don't allow provisioning of resources, making that subscription type incompatible with Skyhigh CASB. However, if you are using Azure Active Directory itself, your Azure subscription is supported by Skyhigh CASB, as users in your organization have sufficient permissions to provision resources.

  1. Proper permissions associated with an account. Permissions to read security configurations of Azure resources associated with the Subscriptions accessible to Skyhigh CASB:
Permissions Required Configuration Audit Activity Monitoring DLP and Malware (including Quarantine)
Reader Yes Yes No
Reader and Data Access Yes Yes Yes
  • Was this article helpful?