Enrollment¶
On the CSC enrollment page, you will find a number of validation steps required to successfully onboard your tenant to Cloud Security Center. Below you will find a detailed explanation of each step and why we require it.
Prerequisites¶
Ensure your tenant is known in Cloud Security Center¶
This step will validate your purchase and register your tenant in our system.
Cloud Management Portal App consents¶
This step will ensure that the required API permissions have been granted to Cloud Management Portal Enterprise App. To consent to these permissions, you must be a Global Administrator in your tenant. See Cloud Management Portal Permissions for more information.
Select Azure subscription¶
Select the Azure subscription you want to use for Cloud Security Center. This subscription will be used to create the required resources for Cloud Security Center to operate. You must be an Owner of the subscription to select it.
Specify Sentinel workspace name¶
This step is optional
If you'd like to use a custom name for the deployed resources, you can specify it here. If you leave this field empty, a default name will be used.
Check required resource providers¶
This step will ensure that the required resource providers are registered in your subscription. If any of the required resource providers are not registered, you can click the "Register" button to register them.
XDR instance¶
For new tenants or tenants that have never used Microsoft's Security portal, the required XDR instance does not yet exist. This instance is required for the automated deployment of Cloud Security Center.
Cloud Security Center App consent¶
This step will ensure that the required API permissions have been granted to Cloud Security Center Enterprise App. Each CSC pack requires specific permissions to function. To consent to these permissions, you must be a Global Administrator in your tenant. See Cloud Security Center Permissions for more information.
Deployment¶
This step will deploy the required resources for Cloud Security Center to operate. This includes the deployment of a Log Analytics workspace, an Azure Sentinel instance.
Post Deployment¶
Sentinel Configuration¶
After the deployment is completed successfully, you will need to configure Azure Sentinel to enable the data connectors.
Test incident¶
As a final step, you can create a test incident to ensure that everything is working as expected.