Configuración del análisis Agentless mediante Azure Resource Manager

Si ya configuraste Cloud Security Management y quieres añadir una nueva suscripción de Azure o activar el análisis Agentless en una suscripción de Azure integrada existente, puedes utilizar Terraform o Azure Resource Manager. Este artículo proporciona instrucciones detalladas sobre el enfoque de Azure Resource Manager.

La ejecución de analizadores Agentless conlleva costes adicionales. Para optimizar estos costes sin dejar de garantizar la fiabilidad de los análisis de 12 horas, Datadog recomienda configurar el análisis Agentless con Terraform como plantilla predeterminada.

Activar la exploración sin Agent

    Configurar la integración Datadog Azure

    Sigue las instrucciones para configurar la integración Datadog Azure.

    Enable Agentless Scanning for your Azure subscriptions

    Complete the following steps to enable Agentless Scanning for your Azure subscriptions:

    Cloud Security Management Setup page

    1. On the Cloud Security Management Setup page, click Cloud Integrations > Azure.
    2. Locate the tenant ID of your subscription.
    3. (Optional) To enable detection of misconfigurations, toggle Resource Scanning to the on position.
    4. Expand the list of Azure subscriptions and locate the subscription where you want to deploy the Agentless scanner.
    5. Click the Enable button under Vulnerability Scanning.
    6. The Vulnerability Scanning dialog is displayed. Toggle Vulnerability Scanning to the on position.
    7. Under How would you like to set up Agentless Scanning?, select Azure Resource Manager.
    8. Click Launch Azure Resource Manager to be redirected to the Azure portal.

    Azure portal

    1. Log in to the Azure portal. The template creation form is displayed.
    2. Select the subscription and the resource group in which the Agentless scanners are to be deployed. Datadog recommends that you deploy the Datadog Agentless Scanner in a dedicated resource group.
    3. In Subscriptions to scan, select all the subscriptions you want to scan.
    4. Enter your Datadog API Key, select your Datadog Site, and fill out the remainder of the form.
    5. Click on Review + create.

    Enable Agentless Scanning for your Azure subscriptions

    Complete the following steps to enable Agentless Scanning for your Azure subscriptions:

    Cloud Security Management Setup page

    1. On the Cloud Security Management Setup page, click Cloud Integrations > Azure.
    2. Locate the tenant ID of your subscription.
    3. (Optional) To enable detection of misconfigurations, toggle Resource Scanning to the on position.
    4. Expand the list of Azure subscriptions and locate the subscription where you want to deploy the Agentless scanner.
    5. Click the Enable button under Vulnerability Scanning.
    6. The Vulnerability Scanning dialog is displayed. Toggle Vulnerability Scanning to the on position.
    7. Under How would you like to set up Agentless Scanning?, select Azure Resource Manager.
    8. Click Launch Azure Resource Manager to be redirected to the Azure portal.

    Azure portal

    1. Log in to the Azure portal. The template creation form is displayed.
    2. Select the subscription and the resource group in which the Agentless scanners are to be deployed. Datadog recommends that you deploy the Datadog Agentless Scanner in a dedicated resource group.
    3. In Subscriptions to scan, select all the subscriptions you want to scan.
    4. Enter your Datadog API Key, select your Datadog Site, and fill out the remainder of the form.
    5. Click on Review + create.

    Excluir recursos de los análisis

    To exclude hosts, containers, and functions from scans, apply the tag DatadogAgentlessScanner:false to each resource. For detailed instructions, refer to the Resource Filters documentation.

    Desactivar el análisis Agentless

    1. En la página de configuración de Cloud Security Management, haz clic en Cloud Integrations > Azure (Integraciones en la nube > Azure).
    2. Localiza el inquilino de tu suscripción, expande la lista de suscripciones e identifica la suscripción en la que quieres desactivar el análisis Agentless.
    3. Haz clic en el botón Edit (Editar) () y desactiva el Análisis de vulnerabilidades.
    4. Haz clic en Done (Listo).

    Desinstalación con Azure Resource Manager

    Para desinstalar el análisis Agentless, inicia sesión en tu suscripción Azure. Si creaste un grupo de recursos exclusivo para el analizador Agentless, elimina este grupo de recursos junto con las siguientes definiciones de roles de Azure:

    • Rol del analizador Agentless de Datadog
    • Rol delegado del analizador Agentless de Datadog

    Si no utilizaste un grupo de recursos exclusivo, deberás eliminar manualmente los recursos del analizador, que pueden identificarse mediante las etiquetas (tags) Datadog:true y DatadogAgentlessScanner:true.

    Referencias adicionales

    Más enlaces, artículos y documentación útiles:

    Agentless Scanning de Cloud Security ManagementDOCUMENTACIÓN more more Configuración de Agentless Scanning utilizando TerraformDOCUMENTACIÓN more more
    PREVIEWING: dgreen15/github-error-fix