How can we help?

Search

Microsoft Azure Integration

Netanel Hugi
Netanel Hugi
  • Updated

Overview

Torii integrates with Microsoft Azure and syncs:

User Fields License Types
Email Microsoft Azure
Status
Role
  • Torii supports syncing multiple Microsoft Azure accounts.
  • You can stay constantly updated with application information from our Integrations Page Integration Capabilities Integration Capabilities table.

Requirements

Accounts & Permissions

  • The user connecting the integration must have one of the following Azure roles:
    • Application Administrator
    • Privileged Role Administrator
    • Global Administrator (not recommended)
  • The same user must also have Reader (or any role with read access) assigned in Azure role assignments for the relevant subscription, so Torii can fetch subscription-level user role assignments.

How to assign the Reader role in Azure role assignments

  1. Log in to the Azure Portal.
  2. Go to Subscriptions and select the subscription you plan to sync.
  3. Navigate to Access control (IAM).
  4. Click AddAdd role assignment.
    Screenshot 2025-12-01 at 14.35.27.png
  5. Select the role Reader.
  6. Choose MembersSelect members and choose the user who will connect the integration.
    Screenshot 2025-12-01 at 14.35.49.png
  7. Click Review + assign.

How to Generate the Required Values

  • Azure Subscription ID:
    • Log in to the Azure Portal
    • Navigate to Subscriptions
    • Copy the Subscription ID of the relevant subscription

Scopes

  • user.read — Allows reading the signed-in user's basic profile. Required by Microsoft for standard login.
  • user.read.all — Allows Torii to read the list of all users in the directory. Required for fetching Azure user fields such as email and status.
  • user_impersonation — Enables the application to access Azure Management APIs on behalf of the user, required for retrieving subscription-level role assignments.

How to Connect the Integration

  1. Go to the Integrations page in Torii.
  2. Select the Microsoft Azure tile.
  3. Click Connect.
  4. Enter your Azure Subscription ID to proceed.
  5. Log in to your Microsoft account when prompted and grant the required OAuth permissions.
  6. Click Connect to finalize the integration.
  7. Once synced, a green checkmark will appear next to the integration.

Q&A

Q: Which roles does Torii sync from Microsoft Azure?

A: Torii syncs all Azure role assignments for users within the specified subscription. Only users who have assigned Azure roles in that subscription will appear in the integration results.

Q: Can I track multiple Azure subscriptions in Torii?
A: Yes. To sync more than one subscription, connect a separate Microsoft Azure integration tile for each subscription and supply its unique Subscription ID. 


 

For any further questions, please contact Torii Support.

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request