Overview

Cloud Security Posture Management (CSPM) is the process of securing multi-cloud environments through enhanced visibility, risk and misconfiguration identification, posture assessment, and compliance protocols. CodeAnt AI continuously monitor cloud infrastructure—such as Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS)—for gaps in security policy enforcement.

Key Features

  • Multi-Cloud Support: Currently supports AWS, GCP and Azure.
  • Seamless Integration: Connect seamlessly with any cloud provider and continuously monitor for security vulnerabilities, misconfigurations, and compliance issues.

How It Works

  1. Permissions

    • Get the tenant ID
      az account show --query tenantId -o tsv
      
    • Get the client (app) ID
      az ad app list --display-name "my-exporter-sp" --query "[0].appId" -o tsv
      
    • Create (or reset) a client secret
      az ad app credential reset \
        --id YOUR_APP_ID \
        --append \
        --credential-description "exporter-script" \
        --years 1 \
        --query password -o tsv
      
      • This command outputs the new secret.
    • Ensure the SP has Reader rights
      az role assignment create \
        --assignee YOUR_APP_ID \
        --role Reader \
        --scope "/subscriptions/$AZURE_SUBSCRIPTION_ID"
      
  2. Settings

    • In the CodeAnt UI navigate to Settings -> Cloud Security Settings -> Azure.
    • Write tenant id, subscription id, client id, client secret and hit save.
  3. Start a Scan

    • Go to Cloud Security -> Start a New Scan and pick your Azure connection.
    • Within 15-20 minutes, the scan will be completed, and you will see the results.

Demo

For a detailed use case and step-by-step guide on how to utilize the cloud security feature, check out our demo. The demo provides a comprehensive walkthrough, showing you how to configure settings, start a scan, and interpret the results effectively.