Why does the Public Cloud application need the storage account contributor role?

Why does the Public Cloud application need the storage account contributor role?

0
Created On 01/11/19 16:07 PM - Last Modified 07/19/22 23:12 PM


Question


Why does the Prisma Cloud application need the storage account contributor role?

Environment


Azure
Prisma Cloud

Answer


Storage Account Contributor role is required for ingesting network flow logs. Network flow logs are stored in storage accounts. The Prisma Cloud application needs the `Storage Account Contributor` role so that it can list and download flow log files from the storage accounts.

Note that we do NOT need this role for ALL storage accounts, only for those accounts where flow logs are written to.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cma2CAC&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail