Blob Containers
Similar to scanning AWS storage volumes you can also scan Azure Blobs.
Last updated
Similar to scanning AWS storage volumes you can also scan Azure Blobs.
Last updated
When linking an account in the CSS console, we deploy resources in the new CSS Resource Group created in Azure. Those resources will have access to the Blob Containers that reside within the linked Azure Account.
Once the Azure Account is linked, Azure Blob Containers will be made available to be scan through the CSS Console in the Protection > Azure Blob Containers page. You can select blob containers to scan or run scans on a schedule basis.
We offer two types of scanning for Azure: Event-Based Scanning and Retro Scanning.
Users upload data to storage containers.
The storage account's system topic has an Event Grid Subscription tied to it that points to Azure Queue Storage as its event handler.
The Azure Queue Storage receives information about the object via the Event Grid Subscription.
The Container Application pulls information from the queue and scans the object that the notification refers to.
Results are tagged onto the object.
Results and metering are sent back to the CSS Console.
"Protection" can mean multiple things: real-time scanning (event-based), schedule scanning (pre-defined schedule based) and on-demand (pick one or more blobs and scan immediately whenever you want).
The shield color shown on this page will reflect how a blob is being protected with event-based scanning. A red shield means a blob is not protected and a green shield means a blob is protected.
The schedule icons shown below will reflect whether a blob is associated with a schedule and whether that schedule is active or not.
Similar to protecting Amazon S3 buckets, you can click the red shield associated with each Blob to enable event-based protection on a blob and scan any new files being uploaded to the Blob automatically.
You can also select multiple blobs at the same time, go to the Actions menu, and select Turn On Event AV to enable event-based protection on multiple buckets at the same time.
You can scan pre-existing files in a blob at anytime by selecting which blob you'd like to scan and then selecting Scan Existing - AV in the Actions menu.
You can add blobs to a schedule by selecting the blobs you want to scan on a scheduled basis and selecting Create AV Schedule in the Actions menu.
If you go to Monitoring > Jobs you'll be able to see the status of on-demand and scheduled retro scans for Azure blobs.
Protected by Active Schedule -
Part of an Inactive Schedule -
Not a Part of any Schedule -