search
Ctrlk
Sign up for FreeKnowledge Base

🔷Microsoft Azure

Install P0 IAM management on Microsoft Azure in about 10 minutes. Configure just-in-time access and privilege governance for your Azure environment.

P0's Azure integration is Generally Available and provides comprehensive access management for your Azure resources.

hashtag
Overview

This guide walks you through installing and configuring P0's Azure integrations:

  • IAM Management for Just‑in‑Time (JIT) access

  • SSH access for Azure Virtual Machines via Bastion

hashtag
Installation summary

Complete the following steps in order. Each step depends on the one before it.

circle-info

Steps 3 and 4 are only required if you need SSH access for Azure Virtual Machines. If you only need IAM management for JIT access, complete steps 1 and 2.

Step
Page
Purpose
Depends on

1

Azure app registration

Create the service identity P0 uses in your tenant

2

IAM management

Enable Just‑in‑Time access to Azure resources

App registration

3

Configure bastion host integration

Set up the Bastion host for secure SSH tunneling

IAM management

4

Install SSH access

Connect P0 to your Azure VMs for SSH access

Bastion host configuration

circle-exclamation

These steps have strict dependencies. You cannot configure a Bastion host without first completing the app registration and IAM management, and you cannot install SSH access without first configuring a Bastion host.

hashtag
Before you begin

  • Choose one Entra ID directory on which you want to install P0

  • Choose at least one subscription on which to install P0.

  • Make sure you have the ability to create new app registrations as well as new roles and role assignments. You can do this if you have the Ownerarrow-up-right role attached to your user.

hashtag
Get started

Navigate to "Integrations" on p0.apparrow-up-right, then select "Azure". You will be prompted to enter the ID of the Entra Tenantarrow-up-right you want to install P0 on.

P0 Security Azure Directory Field

Then proceed to Step 1 — Azure app registration.

hashtag
IAM assessment (coming soon)

Support for IAM assessment is planned and will appear in the Azure integration when available.

PreviousAWS RDSNextAzure App Registration

Last updated