Skip to main content

Azure Integration

This guide outlines the step-by-step process to connect your Microsoft Azure environment to ComplyJet.

Upendra Varma avatar
Written by Upendra Varma
Updated over a week ago

Prerequisites

Before you begin, ensure:

  • You have Contributor or Owner access to your Azure subscription

  • You can access the Azure Portal

Step 1: Select Products

Select the Azure products used in your organization and enter your Azure Subscription ID.

Where to find it:

  1. Log in to Azure Portal

  2. Go to Subscriptions

  3. Select your subscription

  4. Copy the Subscription ID

Step 2: App Registration

Register a new application in Azure Entra to allow ComplyJet access.

  1. Navigate to the Azure portal, go to App registrations, and click New registration

  2. Provide a name like ComplyJetIntegrationApp and click Register. Keep other settings as is.

  3. From the Overview page of your app, copy the Application (client) ID

  4. Copy the Directory (tenant) ID

  5. Now, paste these values in ComplyJet

Step 3: API Permissions

Grant the necessary read-only API permissions to the registered app.

  1. In the app registration page, go to API permissions

  2. Click Add a permission and choose Microsoft Graph

  3. Select Application permissions, and search for and add the following five scopes (one by one) :

    User.Read.All
    Reports.Read.All
    Directory.Read.All
    Policy.Read.All
    AuditLog.Read.All

  4. Click Add permissions

  5. Click Grant admin consent for <Your Directory Name> and confirm

Step 4: Client Secret

Now formally create and store the client secret to allow ComplyJet to authenticate.

  1. Go to Certificates & secrets in the app

  2. Click New client secret

  3. Add a description (e.g., ComplyJet Integration App Secret)

  4. Set expiration to 24 months

  5. Click Add

  6. Copy the client secret value (not Secret ID) and paste it into ComplyJet

πŸ“Œ This is the only time the secret will be visible. Please make sure you copy it.

Step 5: IAM Role

Assign the correct read-only role to the ComplyJet application in your subscription.

  1. Go to your Azure Subscription

  2. Select your subscription and go to Access control (IAM)

  3. Click Add > Add role assignment

  4. Choose the Reader role

  5. For Assign access to, select Azure AD user, group, or service principal

  6. Click + Select members, search for and select ComplyJetIntegrationApp

  7. Click Review + assign and confirm the role assignment

You're Done!

Once you've entered all values and completed all steps:

βœ… Click Connect in the ComplyJet setup form
βœ… Azure resources will start syncing shortly
βœ… Compliance checks will begin automatically

Related Articles
AWS Integration
GitHub Integration
Microsoft Intune Integration
Supabase Integration
Azure Devops Integration
Did this answer your question?