Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?

2020 Azure Resources

2019

Entities

Microsoft 365 Resources _type of the Entity _class of the Entity
Account azure_account Account
Group azure_user_group UserGroup
Group Member azure_group_member User
User azure_user User
Azure Resources _type of the Entity _class of the Entity
Virtual Network azure_vnet Network
Subnet azure_subnet Network
Security Group azure_security_group Firewall
Network Interface azure_nic NetworkInterface
Public IP Address azure_public_ip IpAddress
Virtual Machine azure_vm Host

Relationships

From Edge To
azure_account HAS azure_user
azure_account HAS azure_user_group
azure_user_group HAS azure_user
azure_user_group HAS azure_user_group
azure_user_group HAS azure_group_member
azure_vnet CONTAINS azure_subnet
azure_subnet HAS azure_vm
azure_security_group PROTECTS azure_subnet
azure_security_group PROTECTS azure_nic
azure_vm USES azure_nic
azure_vm USES azure_public_ip

2020

Entities

The following entities are created:

Resources Entity _type Entity _class
[AD] Account azure_account Account
[AD] Group azure_user_group UserGroup
[AD] Group Member azure_group_member User
[AD] Service Principal azure_service_principal Service
[AD] User azure_user User
[RM] API Management API azure_api_management_api ApplicationEndpoint
[RM] API Management Service azure_api_management_service Gateway
[RM] Advisor Recommendation azure_advisor_recommendation Finding
[RM] Azure Managed Disk azure_managed_disk DataStore, Disk
[RM] Batch Account azure_batch_account Service
[RM] Batch Application azure_batch_application Process
[RM] Batch Certificate azure_batch_certificate Certificate
[RM] Batch Pool azure_batch_pool Cluster
[RM] CDN Endpoint azure_cdn_endpoint Gateway
[RM] CDN Profile azure_cdn_profile Service
[RM] Classic Admin azure_classic_admin_group UserGroup
[RM] Container azure_container Container
[RM] Container Group azure_container_group Group
[RM] Container Registry azure_container_registry DataStore
[RM] Container Registry Webhook azure_container_registry_webhook ApplicationEndpoint
[RM] Container Volume azure_container_volume Disk
[RM] Cosmos DB Account azure_cosmosdb_account Account, Service
[RM] Cosmos DB Database azure_cosmosdb_sql_database Database, DataStore
[RM] DNS Record Set azure_dns_record_set DomainRecord
[RM] DNS Zone azure_dns_zone DomainZone
[RM] Event Grid Domain azure_event_grid_domain Service
[RM] Event Grid Domain Topic azure_event_grid_domain_topic Queue
[RM] Event Grid Topic azure_event_grid_topic Queue
[RM] Event Grid Topic Subscription azure_event_grid_topic_subscription Subscription
[RM] Image azure_image Image
[RM] Key Vault azure_keyvault_service Service
[RM] Load Balancer azure_lb Gateway
[RM] MariaDB Database azure_mariadb_database Database, DataStore
[RM] MariaDB Server azure_mariadb_server Database, DataStore, Host
[RM] Monitor Diagnostic Log Setting azure_diagnostic_log_setting Configuration
[RM] Monitor Diagnostic Metric Setting azure_diagnostic_metric_setting Configuration
[RM] Monitor Log Profile azure_monitor_log_profile Configuration
[RM] MySQL Database azure_mysql_database Database, DataStore
[RM] MySQL Server azure_mysql_server Database, DataStore, Host
[RM] Network Interface azure_nic NetworkInterface
[RM] Policy Assignment azure_policy_assignment ControlPolicy
[RM] PostgreSQL Database azure_postgresql_database Database, DataStore
[RM] PostgreSQL Server azure_postgresql_server Database, DataStore, Host
[RM] Private DNS Record Set azure_private_dns_record_set DomainRecord
[RM] Private DNS Zone azure_private_dns_zone DomainZone
[RM] Public IP Address azure_public_ip IpAddress
[RM] Redis Cache azure_redis_cache Database, DataStore, Cluster
[RM] Redis Firewall Rule azure_firewall_rule Firewall
[RM] Resource Group azure_resource_group Group
[RM] Role Assignment azure_role_assignment AccessPolicy
[RM] Role Definition azure_role_definition AccessRole
[RM] SQL Database azure_sql_database Database, DataStore
[RM] SQL Server azure_sql_server Database, DataStore, Host
[RM] Security Assessment azure_security_assessment Assessment
[RM] Security Contact azure_security_center_contact Resource
[RM] Security Group azure_security_group Firewall
[RM] Service Bus Namespace azure_service_bus_namespace Service
[RM] Service Bus Queue azure_service_bus_queue Queue
[RM] Service Bus Subscription azure_service_bus_subscription Subscription
[RM] Service Bus Topic azure_service_bus_topic Queue
[RM] Storage Account azure_storage_account Service
[RM] Storage Container azure_storage_container DataStore
[RM] Storage File Share azure_storage_file_share DataStore
[RM] Storage Queue azure_storage_queue Queue
[RM] Storage Table azure_storage_table DataStore, Database
[RM] Subnet azure_subnet Network
[RM] Subscription azure_subscription Account
[RM] Virtual Machine azure_vm Host
[RM] Virtual Network azure_vnet Network

Relationships

The following relationships are created/mapped:

Source Entity _type Relationship _class Target Entity _type
azure_account HAS azure_user_group
azure_account HAS azure_keyvault_service
azure_account HAS azure_user
azure_api_management_service HAS azure_api_management_api
azure_security_assessment IDENTIFIED azure_advisor_recommendation
azure_batch_account HAS azure_batch_application
azure_batch_account HAS azure_batch_certificate
azure_batch_account HAS azure_batch_pool
azure_cdn_profile HAS azure_cdn_endpoint
azure_classic_admin_group HAS azure_user
azure_container_group HAS azure_container
azure_container_group HAS azure_container_volume
azure_container_registry HAS azure_container_registry_webhook
azure_container USES azure_container_volume
azure_container_volume USES azure_storage_file_share
azure_cosmosdb_account HAS azure_cosmosdb_sql_database
azure_diagnostic_log_setting USES azure_storage_account
azure_diagnostic_metric_setting USES azure_storage_account
azure_dns_zone HAS azure_dns_record_set
azure_event_grid_domain HAS azure_event_grid_domain_topic
azure_event_grid_domain_topic HAS azure_event_grid_topic_subscription
azure_event_grid_topic HAS azure_event_grid_topic_subscription
azure_user_group HAS azure_user_group
azure_user_group HAS azure_group_member
azure_user_group HAS azure_user
azure_lb CONNECTS azure_nic
azure_mariadb_server HAS azure_mariadb_database
azure_monitor_log_profile USES azure_storage_account
azure_mysql_server HAS azure_mysql_database
azure_postgresql_server HAS azure_postgresql_database
azure_private_dns_zone HAS azure_private_dns_record_set
azure_redis_cache CONNECTS azure_redis_cache
azure_redis_cache HAS azure_firewall_rule
azure_resource_group HAS azure_api_management_service
azure_resource_group HAS azure_batch_account
azure_resource_group HAS azure_cdn_profile
azure_resource_group HAS azure_container_group
azure_resource_group HAS azure_container_registry
azure_resource_group HAS azure_cosmosdb_account
azure_resource_group HAS azure_dns_zone
azure_resource_group HAS azure_event_grid_domain
azure_resource_group HAS azure_event_grid_topic
azure_resource_group HAS azure_image
azure_resource_group HAS azure_keyvault_service
azure_resource_group HAS azure_lb
azure_resource_group HAS azure_managed_disk
azure_resource_group HAS azure_mariadb_server
azure_resource_group HAS azure_mysql_server
azure_resource_group HAS azure_nic
azure_resource_group HAS azure_postgresql_server
azure_resource_group HAS azure_private_dns_zone
azure_resource_group HAS azure_public_ip
azure_resource_group HAS azure_redis_cache
azure_resource_group HAS azure_security_group
azure_resource_group HAS azure_service_bus_namespace
azure_resource_group HAS azure_sql_server
azure_resource_group HAS azure_storage_account
azure_resource_group HAS azure_vm
azure_resource_group HAS azure_vnet
ANY_SCOPE HAS azure_diagnostic_log_setting
ANY_SCOPE HAS azure_diagnostic_metric_setting
ANY_SCOPE HAS azure_advisor_recommendation
ANY_SCOPE HAS azure_policy_assignment
azure_role_assignment ALLOWS azure_api_management_service
azure_role_assignment ALLOWS azure_container_registry
azure_role_assignment ALLOWS azure_cosmosdb_account
azure_role_assignment ALLOWS azure_dns_zone
azure_role_assignment ALLOWS azure_keyvault_service
azure_role_assignment ALLOWS azure_nic
azure_role_assignment ALLOWS azure_private_dns_zone
azure_role_assignment ALLOWS azure_public_ip
azure_role_assignment ALLOWS azure_resource_group
azure_role_assignment ALLOWS azure_security_group
azure_role_assignment ALLOWS azure_storage_account
azure_role_assignment ALLOWS azure_subscription
azure_role_assignment ALLOWS azure_vnet
azure_role_assignment ASSIGNED azure_application
azure_role_assignment ASSIGNED azure_directory
azure_role_assignment ASSIGNED azure_directory_role_template
azure_role_assignment ASSIGNED azure_everyone
azure_role_assignment ASSIGNED azure_foreign_group
azure_role_assignment ASSIGNED azure_msi
azure_role_assignment ASSIGNED azure_service_principal
azure_role_assignment ASSIGNED azure_unknown
azure_role_assignment ASSIGNED azure_unknown_principal_type
azure_role_assignment ASSIGNED azure_user
azure_role_assignment ASSIGNED azure_user_group
azure_role_assignment USES azure_role_definition
azure_security_group PROTECTS azure_nic
azure_security_group PROTECTS azure_subnet
azure_security_group ALLOWS azure_subnet
azure_service_bus_namespace HAS azure_service_bus_queue
azure_service_bus_namespace HAS azure_service_bus_topic
azure_service_bus_topic HAS azure_service_bus_subscription
azure_sql_server HAS azure_sql_database
azure_storage_account HAS azure_storage_container
azure_storage_account HAS azure_storage_file_share
azure_storage_account HAS azure_storage_queue
azure_storage_account HAS azure_storage_table
azure_storage_account USES azure_keyvault_service
azure_subnet HAS azure_vm
azure_subscription HAS azure_monitor_log_profile
azure_subscription HAS azure_resource_group
azure_subscription HAS azure_security_center_contact
azure_subscription PERFORMED azure_security_assessment
azure_vm USES azure_managed_disk
azure_vm USES azure_nic
azure_vm USES azure_public_ip
azure_vnet CONTAINS azure_subnet
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment