Fortinet black logo

Azure Administration Guide

Home FortiAnalyzer Public Cloud 7.2.0 Azure Administration Guide
7.2.0
7.4.0
7.2.0
7.0.0
6.4.0

Enable system assigned managed identity and configure permissions

Enable system assigned managed identity and configure permissions

To enable a system assigned managed identity:
  1. In Azure, go to Home > Virtual machines and click the name of the VM (fazha001).
  2. Go to Identity.
  3. Set the Status to On.
  4. Click Save.

    A messages asks you to confirm the action.

    Caution

    A system assigned managed identity is restricted to one per resource and is tied to the lifecycle of this resource. You can grant permissions to the managed identity by using Azure role-based access control (Azure RBAC). The managed identity is authenticated with Microsoft Entra ID (formerly Azure AD), so you don’t have to store any credentials in code.

  5. Click Yes.
To configure the permissions:
  1. In Azure, go to Home > Virtual machines and click the name of the VM (fazha001).
  2. Go to Identity > System assigned.
  3. Click Azure role assignments.

  4. From the Subscription dropdown, select SE-Subscription.
  5. Click Add role assignment (Preview).
  6. Enter the resource group information that was created as a Prerequisite:

    • Scope = Resource group

    • Subscription = SE-Subscription

    • Resource group = CMM_RG_FAZHA

    • Role = Owner

  7. Click Save.
  8. Repeat the previous steps for the second FortiAnalyzer-VM (fazha002).

Previous
Next

Enable system assigned managed identity and configure permissions

To enable a system assigned managed identity:
  1. In Azure, go to Home > Virtual machines and click the name of the VM (fazha001).
  2. Go to Identity.
  3. Set the Status to On.
  4. Click Save.

    A messages asks you to confirm the action.

    Caution

    A system assigned managed identity is restricted to one per resource and is tied to the lifecycle of this resource. You can grant permissions to the managed identity by using Azure role-based access control (Azure RBAC). The managed identity is authenticated with Microsoft Entra ID (formerly Azure AD), so you don’t have to store any credentials in code.

  5. Click Yes.
To configure the permissions:
  1. In Azure, go to Home > Virtual machines and click the name of the VM (fazha001).
  2. Go to Identity > System assigned.
  3. Click Azure role assignments.

  4. From the Subscription dropdown, select SE-Subscription.
  5. Click Add role assignment (Preview).
  6. Enter the resource group information that was created as a Prerequisite:

    • Scope = Resource group

    • Subscription = SE-Subscription

    • Resource group = CMM_RG_FAZHA

    • Role = Owner

  7. Click Save.
  8. Repeat the previous steps for the second FortiAnalyzer-VM (fazha002).

Previous
Next