| Operation ID | Description |
|---|
| Create an Azure registration for a tenant. |
| Delete existing legacy Azure subscriptions. |
| Deletes existing Azure registrations. |
| Retrieve script to create resources |
| Retrieve existing Azure registration for a tenant. |
| Trigger health check scan for Azure registrations |
| Update an existing Azure registration for a tenant. |
| Validate an Azure registration by checking service principal, role assignments and deployment stack |
| Download Azure deployment script (Terraform or Bicep) |
| Delete existing legacy Azure subscriptions. |
| Trigger health check scan for Azure registrations |
| Validate an Azure registration by checking service principal, role assignments and deployment stack (if the deployment method is Bicep) |
WARNING
client_id and client_secret are keyword arguments that contain your CrowdStrike API credentials. Please note that all examples below do not hard code these values. (These values are ingested as strings.)
CrowdStrike does not recommend hard coding API credentials or customer identifiers within source code.
Retrieve existing Azure registration for a tenant.
get_registration
| Method | Route |
|---|
 | /cloud-security-registration-azure/entities/registrations/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| tenant_id |  | | query | string | Tenant ID |
| parameters | | | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.get_registration(tenant_id="string")
print(response)
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_get_registration(tenant_id="string")
print(response)
from falconpy import APIHarnessV2
# Do not hardcode API credentials!
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("cloud_registration_azure_get_registration", tenant_id="string")
print(response)
Create an Azure registration for a tenant.
create_registration
| Method | Route |
|---|
 | /cloud-security-registration-azure/entities/registrations/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| body | |  | body | dictionary | Full body payload in JSON format. |
| account_type | |  | body | string | Azure account type. |
| tenant_id | | | body | string | Azure tenant ID. |
| subscription_ids | | | body | string or list of strings | Azure subscription IDs. |
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.create_registration(tenant_id="string",
account_type="string",
subscription_ids=["string1", "string2"])
print(response)
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_create_registration(tenant_id="string",
account_type="string",
subscription_ids=["string1", "string2"])
print(response)
from falconpy import APIHarnessV2
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
body = {
"resource": {
"tenant_id": "string",
"account_type": "string",
"subscription_ids": ["string1", "string2"]
}
}
response = falcon.command("cloud_registration_azure_create_registration", body=body_payload)
print(response)
Update an existing Azure registration for a tenant.
update_registration
| Method | Route |
|---|
 | /cloud-security-registration-azure/entities/registrations/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| body | | | body | dictionary | Full body payload in JSON format. |
| account_type | | | body | string | Azure account type. |
| tenant_id | | | body | string | Azure tenant ID. |
| subscription_ids | | | body | string or list of strings | Azure subscription IDs. |
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.update_registration(tenant_id="string",
account_type="string",
subscription_ids=["string1", "string2"])
print(response)
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_update_registration(tenant_id="string",
account_type="string",
subscription_ids=["string1", "string2"])
print(response)
from falconpy import APIHarnessV2
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
body = {
"resource": {
"tenant_id": "string",
"account_type": "string",
"subscription_ids": ["string1", "string2"]
}
}
response = falcon.command("cloud_registration_azure_update_registration", body=body_payload)
print(response)
Deletes existing Azure registrations.
delete_registration
| Method | Route |
|---|
 | /cloud-security-registration-azure/entities/registrations/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| tenant_ids | | | query | string or list of strings | Azure tenant IDs |
| parameters | | | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.delete_registration(tenant_ids=["string1", "string2"])
print(response)
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_delete_registration(tenant_ids=["string1", "string2"])
print(response)
from falconpy import APIHarnessV2
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("cloud_registration_azure_delete_registration", tenant_ids=["string1", "string2"])
print(response)
Download Azure deployment script (Terraform or Bicep)
deployment_script
| Method | Route |
|---|
| /cloud-security-registration-azure/entities/scripts/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| tenant_id | | | query | string | Azure tenant ID |
| parameters | | | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.deployment_script(tenant_id="string")
print(response)
from falconpy import CloudAzureRegistration
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.download_azure_script(tenant_id="string")
print(response)
from falconpy import APIHarnessV2
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("download_azure_script", tenant_id="string")
print(response)
Back to Table of Contents
Delete existing legacy Azure subscriptions.
delete_legacy_subscription
| Method | Route |
|---|
| /cloud-security-registration-azure/entities/accounts/legacy/v1 |
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| body | ![]()
![]() | ![]()
![]() | body | string | |
| parameters | ![]()
![]() | ![]()
![]() | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.delete_legacy_subscription(body="string"
)
print(response)
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_delete_legacy_subscription(body="string"
)
print(response)
from falconpy import APIHarnessV2
# Do not hardcode API credentials!
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("cloud_registration_azure_delete_legacy_subscription")
print(response)
Back to Table of Contents
Trigger health check scan for Azure registrations
health_check
| Method | Route |
|---|
| /cloud-security-registration-azure/entities/registrations/healthcheck/v1 |
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| tenant_ids | ![]()
![]() | ![]()
![]() | query | list | Azure tenant IDs |
| parameters | ![]()
![]() | ![]()
![]() | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.health_check(tenant_ids=["string"]
)
print(response)
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_trigger_health_check(tenant_ids=["string"]
)
print(response)
from falconpy import APIHarnessV2
# Do not hardcode API credentials!
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("cloud_registration_azure_trigger_health_check",
tenant_ids=["string"]
)
print(response)
Back to Table of Contents
Validate an Azure registration by checking service principal, role assignments and deployment stack (if the deployment method is Bicep)
validate_registration
| Method | Route |
|---|
| /cloud-security-registration-azure/entities/registrations/validate/v1 |
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| tenant_id | ![]()
![]() | ![]()
![]() | query | string | Azure tenant ID to be validated |
| stack_name | ![]()
![]() | ![]()
![]() | query | string | Azure deployment stack name to be validated |
| parameters | ![]()
![]() | ![]()
![]() | query | dictionary | Full query string parameters payload in JSON format. |
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.validate_registration(tenant_id="string",
stack_name="string"
)
print(response)
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_validate_registration(tenant_id="string",
stack_name="string"
)
print(response)
from falconpy import APIHarnessV2
# Do not hardcode API credentials!
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.command("cloud_registration_azure_validate_registration",
tenant_id="string",
stack_name="string"
)
print(response)
Back to Table of Contents
Retrieve script to create resources
download_script
| Method | Route |
|---|
| /cloud-security-registration-azure/entities/scripts/v1 |
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Data type | Description |
|---|
| body | | | body | dictionary | Full body payload in JSON format. |
| tenant_id | | | body | string | Azure tenant ID. |
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.download_script(tenant_id="string")
print(response)
from falconpy import CloudAzureRegistration
# Do not hardcode API credentials!
falcon = CloudAzureRegistration(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
response = falcon.cloud_registration_azure_download_script(tenant_id="string")
print(response)
from falconpy import APIHarnessV2
# Do not hardcode API credentials!
falcon = APIHarnessV2(client_id=CLIENT_ID,
client_secret=CLIENT_SECRET
)
body_payload = {
"resources": [
{
"tenantId": "string"
}
]
}
response = falcon.command("cloud_registration_azure_download_script", body=body_payload)
print(response)