Why does the Public Cloud application need the storage account contributor role?
0
Created On 01/11/19 16:07 PM - Last Modified 07/19/22 23:12 PM
Question
Why does the Prisma Cloud application need the storage account contributor role?
Environment
Azure
Prisma Cloud
Answer
Storage Account Contributor role is required for ingesting network flow logs. Network flow logs are stored in storage accounts. The Prisma Cloud application needs the `Storage Account Contributor` role so that it can list and download flow log files from the storage accounts.
Note that we do NOT need this role for ALL storage accounts, only for those accounts where flow logs are written to.