aiwilliams/jupiterone-azure-2020.md

## jupiterone-azure-2020.md

      
    Raw
  

              jupiterone-azure-2020.md
            
          
    2020 Azure Resources

2019

Entities


Microsoft 365 Resources
_type of the Entity
_class of the Entity


Account
azure_account
Account


Group
azure_user_group
UserGroup


Group Member
azure_group_member
User


User
azure_user
User


Azure Resources
_type of the Entity
_class of the Entity


Virtual Network
azure_vnet
Network


Subnet
azure_subnet
Network


Security Group
azure_security_group
Firewall


Network Interface
azure_nic
NetworkInterface


Public IP Address
azure_public_ip
IpAddress


Virtual Machine
azure_vm
Host


Relationships


From
Edge
To


azure_account
HAS
azure_user


azure_account
HAS
azure_user_group


azure_user_group
HAS
azure_user


azure_user_group
HAS
azure_user_group


azure_user_group
HAS
azure_group_member


azure_vnet
CONTAINS
azure_subnet


azure_subnet
HAS
azure_vm


azure_security_group
PROTECTS
azure_subnet


azure_security_group
PROTECTS
azure_nic


azure_vm
USES
azure_nic


azure_vm
USES
azure_public_ip


2020

Entities

The following entities are created:


Resources
Entity _type
Entity _class


[AD] Account
azure_account
Account


[AD] Group
azure_user_group
UserGroup


[AD] Group Member
azure_group_member
User


[AD] Service Principal
azure_service_principal
Service


[AD] User
azure_user
User


[RM] API Management API
azure_api_management_api
ApplicationEndpoint


[RM] API Management Service
azure_api_management_service
Gateway


[RM] Advisor Recommendation
azure_advisor_recommendation
Finding


[RM] Azure Managed Disk
azure_managed_disk
DataStore, Disk


[RM] Batch Account
azure_batch_account
Service


[RM] Batch Application
azure_batch_application
Process


[RM] Batch Certificate
azure_batch_certificate
Certificate


[RM] Batch Pool
azure_batch_pool
Cluster


[RM] CDN Endpoint
azure_cdn_endpoint
Gateway


[RM] CDN Profile
azure_cdn_profile
Service


[RM] Classic Admin
azure_classic_admin_group
UserGroup


[RM] Container
azure_container
Container


[RM] Container Group
azure_container_group
Group


[RM] Container Registry
azure_container_registry
DataStore


[RM] Container Registry Webhook
azure_container_registry_webhook
ApplicationEndpoint


[RM] Container Volume
azure_container_volume
Disk


[RM] Cosmos DB Account
azure_cosmosdb_account
Account, Service


[RM] Cosmos DB Database
azure_cosmosdb_sql_database
Database, DataStore


[RM] DNS Record Set
azure_dns_record_set
DomainRecord


[RM] DNS Zone
azure_dns_zone
DomainZone


[RM] Event Grid Domain
azure_event_grid_domain
Service


[RM] Event Grid Domain Topic
azure_event_grid_domain_topic
Queue


[RM] Event Grid Topic
azure_event_grid_topic
Queue


[RM] Event Grid Topic Subscription
azure_event_grid_topic_subscription
Subscription


[RM] Image
azure_image
Image


[RM] Key Vault
azure_keyvault_service
Service


[RM] Load Balancer
azure_lb
Gateway


[RM] MariaDB Database
azure_mariadb_database
Database, DataStore


[RM] MariaDB Server
azure_mariadb_server
Database, DataStore, Host


[RM] Monitor Diagnostic Log Setting
azure_diagnostic_log_setting
Configuration


[RM] Monitor Diagnostic Metric Setting
azure_diagnostic_metric_setting
Configuration


[RM] Monitor Log Profile
azure_monitor_log_profile
Configuration


[RM] MySQL Database
azure_mysql_database
Database, DataStore


[RM] MySQL Server
azure_mysql_server
Database, DataStore, Host


[RM] Network Interface
azure_nic
NetworkInterface


[RM] Policy Assignment
azure_policy_assignment
ControlPolicy


[RM] PostgreSQL Database
azure_postgresql_database
Database, DataStore


[RM] PostgreSQL Server
azure_postgresql_server
Database, DataStore, Host


[RM] Private DNS Record Set
azure_private_dns_record_set
DomainRecord


[RM] Private DNS Zone
azure_private_dns_zone
DomainZone


[RM] Public IP Address
azure_public_ip
IpAddress


[RM] Redis Cache
azure_redis_cache
Database, DataStore, Cluster


[RM] Redis Firewall Rule
azure_firewall_rule
Firewall


[RM] Resource Group
azure_resource_group
Group


[RM] Role Assignment
azure_role_assignment
AccessPolicy


[RM] Role Definition
azure_role_definition
AccessRole


[RM] SQL Database
azure_sql_database
Database, DataStore


[RM] SQL Server
azure_sql_server
Database, DataStore, Host


[RM] Security Assessment
azure_security_assessment
Assessment


[RM] Security Contact
azure_security_center_contact
Resource


[RM] Security Group
azure_security_group
Firewall


[RM] Service Bus Namespace
azure_service_bus_namespace
Service


[RM] Service Bus Queue
azure_service_bus_queue
Queue


[RM] Service Bus Subscription
azure_service_bus_subscription
Subscription


[RM] Service Bus Topic
azure_service_bus_topic
Queue


[RM] Storage Account
azure_storage_account
Service


[RM] Storage Container
azure_storage_container
DataStore


[RM] Storage File Share
azure_storage_file_share
DataStore


[RM] Storage Queue
azure_storage_queue
Queue


[RM] Storage Table
azure_storage_table
DataStore, Database


[RM] Subnet
azure_subnet
Network


[RM] Subscription
azure_subscription
Account


[RM] Virtual Machine
azure_vm
Host


[RM] Virtual Network
azure_vnet
Network


Relationships

The following relationships are created/mapped:


Source Entity _type
Relationship _class
Target Entity _type


azure_account
HAS
azure_user_group


azure_account
HAS
azure_keyvault_service


azure_account
HAS
azure_user


azure_api_management_service
HAS
azure_api_management_api


azure_security_assessment
IDENTIFIED
azure_advisor_recommendation


azure_batch_account
HAS
azure_batch_application


azure_batch_account
HAS
azure_batch_certificate


azure_batch_account
HAS
azure_batch_pool


azure_cdn_profile
HAS
azure_cdn_endpoint


azure_classic_admin_group
HAS
azure_user


azure_container_group
HAS
azure_container


azure_container_group
HAS
azure_container_volume


azure_container_registry
HAS
azure_container_registry_webhook


azure_container
USES
azure_container_volume


azure_container_volume
USES
azure_storage_file_share


azure_cosmosdb_account
HAS
azure_cosmosdb_sql_database


azure_diagnostic_log_setting
USES
azure_storage_account


azure_diagnostic_metric_setting
USES
azure_storage_account


azure_dns_zone
HAS
azure_dns_record_set


azure_event_grid_domain
HAS
azure_event_grid_domain_topic


azure_event_grid_domain_topic
HAS
azure_event_grid_topic_subscription


azure_event_grid_topic
HAS
azure_event_grid_topic_subscription


azure_user_group
HAS
azure_user_group


azure_user_group
HAS
azure_group_member


azure_user_group
HAS
azure_user


azure_lb
CONNECTS
azure_nic


azure_mariadb_server
HAS
azure_mariadb_database


azure_monitor_log_profile
USES
azure_storage_account


azure_mysql_server
HAS
azure_mysql_database


azure_postgresql_server
HAS
azure_postgresql_database


azure_private_dns_zone
HAS
azure_private_dns_record_set


azure_redis_cache
CONNECTS
azure_redis_cache


azure_redis_cache
HAS
azure_firewall_rule


azure_resource_group
HAS
azure_api_management_service


azure_resource_group
HAS
azure_batch_account


azure_resource_group
HAS
azure_cdn_profile


azure_resource_group
HAS
azure_container_group


azure_resource_group
HAS
azure_container_registry


azure_resource_group
HAS
azure_cosmosdb_account


azure_resource_group
HAS
azure_dns_zone


azure_resource_group
HAS
azure_event_grid_domain


azure_resource_group
HAS
azure_event_grid_topic


azure_resource_group
HAS
azure_image


azure_resource_group
HAS
azure_keyvault_service


azure_resource_group
HAS
azure_lb


azure_resource_group
HAS
azure_managed_disk


azure_resource_group
HAS
azure_mariadb_server


azure_resource_group
HAS
azure_mysql_server


azure_resource_group
HAS
azure_nic


azure_resource_group
HAS
azure_postgresql_server


azure_resource_group
HAS
azure_private_dns_zone


azure_resource_group
HAS
azure_public_ip


azure_resource_group
HAS
azure_redis_cache


azure_resource_group
HAS
azure_security_group


azure_resource_group
HAS
azure_service_bus_namespace


azure_resource_group
HAS
azure_sql_server


azure_resource_group
HAS
azure_storage_account


azure_resource_group
HAS
azure_vm


azure_resource_group
HAS
azure_vnet


ANY_SCOPE
HAS
azure_diagnostic_log_setting


ANY_SCOPE
HAS
azure_diagnostic_metric_setting


ANY_SCOPE
HAS
azure_advisor_recommendation


ANY_SCOPE
HAS
azure_policy_assignment


azure_role_assignment
ALLOWS
azure_api_management_service


azure_role_assignment
ALLOWS
azure_container_registry


azure_role_assignment
ALLOWS
azure_cosmosdb_account


azure_role_assignment
ALLOWS
azure_dns_zone


azure_role_assignment
ALLOWS
azure_keyvault_service


azure_role_assignment
ALLOWS
azure_nic


azure_role_assignment
ALLOWS
azure_private_dns_zone


azure_role_assignment
ALLOWS
azure_public_ip


azure_role_assignment
ALLOWS
azure_resource_group


azure_role_assignment
ALLOWS
azure_security_group


azure_role_assignment
ALLOWS
azure_storage_account


azure_role_assignment
ALLOWS
azure_subscription


azure_role_assignment
ALLOWS
azure_vnet


azure_role_assignment
ASSIGNED
azure_application


azure_role_assignment
ASSIGNED
azure_directory


azure_role_assignment
ASSIGNED
azure_directory_role_template


azure_role_assignment
ASSIGNED
azure_everyone


azure_role_assignment
ASSIGNED
azure_foreign_group


azure_role_assignment
ASSIGNED
azure_msi


azure_role_assignment
ASSIGNED
azure_service_principal


azure_role_assignment
ASSIGNED
azure_unknown


azure_role_assignment
ASSIGNED
azure_unknown_principal_type


azure_role_assignment
ASSIGNED
azure_user


azure_role_assignment
ASSIGNED
azure_user_group


azure_role_assignment
USES
azure_role_definition


azure_security_group
PROTECTS
azure_nic


azure_security_group
PROTECTS
azure_subnet


azure_security_group
ALLOWS
azure_subnet


azure_service_bus_namespace
HAS
azure_service_bus_queue


azure_service_bus_namespace
HAS
azure_service_bus_topic


azure_service_bus_topic
HAS
azure_service_bus_subscription


azure_sql_server
HAS
azure_sql_database


azure_storage_account
HAS
azure_storage_container


azure_storage_account
HAS
azure_storage_file_share


azure_storage_account
HAS
azure_storage_queue


azure_storage_account
HAS
azure_storage_table


azure_storage_account
USES
azure_keyvault_service


azure_subnet
HAS
azure_vm


azure_subscription
HAS
azure_monitor_log_profile


azure_subscription
HAS
azure_resource_group


azure_subscription
HAS
azure_security_center_contact


azure_subscription
PERFORMED
azure_security_assessment


azure_vm
USES
azure_managed_disk


azure_vm
USES
azure_nic


azure_vm
USES
azure_public_ip


azure_vnet
CONTAINS
azure_subnet
Microsoft 365 Resources	_type of the Entity	_class of the Entity
Account	`azure_account`	`Account`
Group	`azure_user_group`	`UserGroup`
Group Member	`azure_group_member`	`User`
User	`azure_user`	`User`
Azure Resources	_type of the Entity	_class of the Entity
Virtual Network	`azure_vnet`	`Network`
Subnet	`azure_subnet`	`Network`
Security Group	`azure_security_group`	`Firewall`
Network Interface	`azure_nic`	`NetworkInterface`
Public IP Address	`azure_public_ip`	`IpAddress`
Virtual Machine	`azure_vm`	`Host`
From	Edge	To
`azure_account`	HAS	`azure_user`
`azure_account`	HAS	`azure_user_group`
`azure_user_group`	HAS	`azure_user`
`azure_user_group`	HAS	`azure_user_group`
`azure_user_group`	HAS	`azure_group_member`
`azure_vnet`	CONTAINS	`azure_subnet`
`azure_subnet`	HAS	`azure_vm`
`azure_security_group`	PROTECTS	`azure_subnet`
`azure_security_group`	PROTECTS	`azure_nic`
`azure_vm`	USES	`azure_nic`
`azure_vm`	USES	`azure_public_ip`
Resources	Entity `_type`	Entity `_class`
[AD] Account	`azure_account`	`Account`
[AD] Group	`azure_user_group`	`UserGroup`
[AD] Group Member	`azure_group_member`	`User`
[AD] Service Principal	`azure_service_principal`	`Service`
[AD] User	`azure_user`	`User`
[RM] API Management API	`azure_api_management_api`	`ApplicationEndpoint`
[RM] API Management Service	`azure_api_management_service`	`Gateway`
[RM] Advisor Recommendation	`azure_advisor_recommendation`	`Finding`
[RM] Azure Managed Disk	`azure_managed_disk`	`DataStore`, `Disk`
[RM] Batch Account	`azure_batch_account`	`Service`
[RM] Batch Application	`azure_batch_application`	`Process`
[RM] Batch Certificate	`azure_batch_certificate`	`Certificate`
[RM] Batch Pool	`azure_batch_pool`	`Cluster`
[RM] CDN Endpoint	`azure_cdn_endpoint`	`Gateway`
[RM] CDN Profile	`azure_cdn_profile`	`Service`
[RM] Classic Admin	`azure_classic_admin_group`	`UserGroup`
[RM] Container	`azure_container`	`Container`
[RM] Container Group	`azure_container_group`	`Group`
[RM] Container Registry	`azure_container_registry`	`DataStore`
[RM] Container Registry Webhook	`azure_container_registry_webhook`	`ApplicationEndpoint`
[RM] Container Volume	`azure_container_volume`	`Disk`
[RM] Cosmos DB Account	`azure_cosmosdb_account`	`Account`, `Service`
[RM] Cosmos DB Database	`azure_cosmosdb_sql_database`	`Database`, `DataStore`
[RM] DNS Record Set	`azure_dns_record_set`	`DomainRecord`
[RM] DNS Zone	`azure_dns_zone`	`DomainZone`
[RM] Event Grid Domain	`azure_event_grid_domain`	`Service`
[RM] Event Grid Domain Topic	`azure_event_grid_domain_topic`	`Queue`
[RM] Event Grid Topic	`azure_event_grid_topic`	`Queue`
[RM] Event Grid Topic Subscription	`azure_event_grid_topic_subscription`	`Subscription`
[RM] Image	`azure_image`	`Image`
[RM] Key Vault	`azure_keyvault_service`	`Service`
[RM] Load Balancer	`azure_lb`	`Gateway`
[RM] MariaDB Database	`azure_mariadb_database`	`Database`, `DataStore`
[RM] MariaDB Server	`azure_mariadb_server`	`Database`, `DataStore`, `Host`
[RM] Monitor Diagnostic Log Setting	`azure_diagnostic_log_setting`	`Configuration`
[RM] Monitor Diagnostic Metric Setting	`azure_diagnostic_metric_setting`	`Configuration`
[RM] Monitor Log Profile	`azure_monitor_log_profile`	`Configuration`
[RM] MySQL Database	`azure_mysql_database`	`Database`, `DataStore`
[RM] MySQL Server	`azure_mysql_server`	`Database`, `DataStore`, `Host`
[RM] Network Interface	`azure_nic`	`NetworkInterface`
[RM] Policy Assignment	`azure_policy_assignment`	`ControlPolicy`
[RM] PostgreSQL Database	`azure_postgresql_database`	`Database`, `DataStore`
[RM] PostgreSQL Server	`azure_postgresql_server`	`Database`, `DataStore`, `Host`
[RM] Private DNS Record Set	`azure_private_dns_record_set`	`DomainRecord`
[RM] Private DNS Zone	`azure_private_dns_zone`	`DomainZone`
[RM] Public IP Address	`azure_public_ip`	`IpAddress`
[RM] Redis Cache	`azure_redis_cache`	`Database`, `DataStore`, `Cluster`
[RM] Redis Firewall Rule	`azure_firewall_rule`	`Firewall`
[RM] Resource Group	`azure_resource_group`	`Group`
[RM] Role Assignment	`azure_role_assignment`	`AccessPolicy`
[RM] Role Definition	`azure_role_definition`	`AccessRole`
[RM] SQL Database	`azure_sql_database`	`Database`, `DataStore`
[RM] SQL Server	`azure_sql_server`	`Database`, `DataStore`, `Host`
[RM] Security Assessment	`azure_security_assessment`	`Assessment`
[RM] Security Contact	`azure_security_center_contact`	`Resource`
[RM] Security Group	`azure_security_group`	`Firewall`
[RM] Service Bus Namespace	`azure_service_bus_namespace`	`Service`
[RM] Service Bus Queue	`azure_service_bus_queue`	`Queue`
[RM] Service Bus Subscription	`azure_service_bus_subscription`	`Subscription`
[RM] Service Bus Topic	`azure_service_bus_topic`	`Queue`
[RM] Storage Account	`azure_storage_account`	`Service`
[RM] Storage Container	`azure_storage_container`	`DataStore`
[RM] Storage File Share	`azure_storage_file_share`	`DataStore`
[RM] Storage Queue	`azure_storage_queue`	`Queue`
[RM] Storage Table	`azure_storage_table`	`DataStore`, `Database`
[RM] Subnet	`azure_subnet`	`Network`
[RM] Subscription	`azure_subscription`	`Account`
[RM] Virtual Machine	`azure_vm`	`Host`
[RM] Virtual Network	`azure_vnet`	`Network`