Skip to content
  • There are no suggestions because the search field is empty.

Integrations : Cloud : Azure

Adding the Microsoft Azure Integration and Its Associated Insights

Overview

The Microsoft Azure connection in Block 64 enables secure, read-only access to your Azure tenant’s resource inventory. This integration allows Block 64 to collect data about virtual machines, databases, and other Azure resources, providing comprehensive visibility into your public cloud environment.

Once connected, the data collected from this integration appears in the following Block 64 Insights reports:

  • Reports → Public Cloud → Overview – High-level summary of your Azure environment.

  • Reports → Public Cloud → Compute – Details on Azure virtual machines, including sizing and configuration.

  • Reports → Public Cloud → Database – Inventory and configuration details for Azure-hosted databases.

The credentials needed for this Integration

To set up this connection, you’ll need:

  • A Microsoft 365 account with Azure subscription access and permissions to view resources via the Azure Resource Manager API.

  • An admin role with sufficient access to approve delegated permissions (e.g., Global Administrator or Owner of the subscription).

How to add this Integration

  • In the Block 64 portal, navigate to Integrations.

  • Select Microsoft Azure, enter your Admin Email and click Connect.

  • Sign in using the Microsoft account with the required Azure permissions.

  • On the Permissions requested screen, review and accept the following read-only permissions for Azure Inventory Connection (Read-Only) published by Block 64 Corporation:

  • Check Consent on behalf of your organization to prevent other admins from needing to approve access separately.

  • Click Accept to authorize the integration.

Why is this Integration failing?

Ensure the account being used has the necessary permissions for the relevant Azure subscriptions. If the integration isn’t working, it’s often because the correct permissions haven’t been granted, the original consent has expired, or conditional access/security policies in Microsoft Entra ID are blocking the connection.

To fix this:

  • Reconnect using an account with the appropriate admin role and grant all requested permissions.

  • Select Consent on behalf of your organization during setup.

  • In Microsoft Entra ID’s Enterprise Applications, confirm that Azure Inventory Connection (Read-Only) is still authorized.

 

How to remove this Integration

From Block 64:

You can disable this integration temporarily by clicking on the Enable switch in the integration.

Alternatively, you can disconnect the integration entirely by clicking on the Disconnect button.

From Microsoft 365 / Entra ID:

  1. Sign in to the Microsoft Entra admin center.

  2. Navigate to Enterprise Applications.

  3. Search for and select Azure Inventory Connection (Read-Only).

  4. Choose Delete to remove the app and revoke all permissions.