This page describes how to configure Cloud Discovery from your Lansweeper Site for Microsoft Azure, Amazon Web Services, and Google Cloud Platform.
Lansweeper’s Cloud Discovery identifies and catalogs all assets within your cloud infrastructure, including virtual machines, storage buckets, databases, and more.
To learn more about Cloud Discovery, see Introduction to Cloud Discovery.
Configure Cloud Discovery
You can configure the discovery settings for Cloud from within your Lansweeper Site, allowing you to determine what to scan and when the scans should take place.
Before scanning your cloud provider, you’ll first need to set up your infrastructure to allow the Cloud sensor to access your environment. Depending on your cloud provider, these steps may differ, but setting up authentication to your cloud environment is crucial.
For more information on preparing your cloud environment, see Set up Cloud sensor access.
Create a new Cloud Discovery action
Cloud Discovery uses the Cloud discovery action to scan for assets in your cloud infrastructure. Currently, you can select either Microsoft Azure, Microsoft Intune, Microsoft Entra ID and Microsoft 365, Amazon Web Services (AWS), or Google Cloud Platform (GCP) as your cloud provider.
Microsoft Azure
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select Add new action.
- In the pop-up, select the Cloud action type and choose Add action.
- Enter a name and description for your action.
- In Cloud sources, select Cloud provider - Microsoft Azure.
- Enter your Tenant ID, Application ID and Key Vault URI.
- Select List subscriptions.
- Select the subscriptions you want to add to the discovery action.
- Select a workload to scan. By default, all workloads will be selected.
- Optionally, specify the Resource Groups or Tags to include in or exclude from the Discovery action.
- Select Create new trigger.
- In the pop-up, select a scheduling mode, choose when to run the action and enter a name for the trigger.
- Select Save trigger.
- Select Save and exit.
Microsoft Intune
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select Add new action.
- In the pop-up, select the Cloud action type and choose Add action.
- Enter a name and description for your action.
- In Cloud sources, select Endpoint Management - Microsoft Intune.
- Enter your Tenant ID, Application ID, and Key Vault URI.
- Select Validate connection.
- Optionally, specify the Device categories to include in or exclude from the Discovery action.
- Select Create new trigger.
- In the pop-up, select a scheduling mode, choose when to run the action, and enter a name for the trigger.
- Select Save trigger.
- Select Save and exit.
Microsoft Entra ID and Microsoft 365
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select Add new action.
- In the pop-up, select the Cloud action type and choose Add action.
- Enter a name and description for your action.
- In Cloud sources, select Identity and Access - Microsoft 365.
- Enter your Tenant ID, Application ID, and Key Vault URI.
- Select Validate connection.
- Optionally, specify the Resource Groups or Tags to include or exclude in the Discovery action.
- Select Create new trigger.
- In the pop-up, select a scheduling mode, choose when to run the action, and enter a name for the trigger.
- Select Save trigger.
- Select Save and exit.
Amazon Web Services (AWS)
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select Add new action.
- In the pop-up, select the Cloud action type and choose Add action.
- Enter a name and description for your action.
- In Cloud sources, select Cloud provider - Amazon Web Services (AWS).
- Enter your Role ARN.
- Select either Standalone account or Organization Unit ID or Root ID.
- If you selected the latter, enter your Organization Unit ID or your Root ID.
- Select List accounts.
- Select the accounts you want to add to the discovery action.
- Select a workload to scan. By default, all workloads will be selected.
- Select a region to scan. By default, all regions except for China and GovCloud will be selected.
- Optionally, specify the Tags to include in or exclude from the Discovery action.
- Select Create new trigger.
- In the pop-up, select a scheduling mode, choose when to run the action and enter a name for the trigger.
- Select Save trigger.
- Select Save and exit.
Google Cloud Platform (GCP)
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select Add new action.
- In the pop-up, select the Cloud action type and choose Add action.
- Enter a name and description for your action.
- In Cloud sources, select Cloud provider - Google Cloud Platform (GCP).
- Enter your Workload Identity Pool ID, Workload Identity Provider, Project Number and Service Account Email.
- Select List projects.
- Select the projects you want to add to the discovery action.
- Select a workload to scan. By default, all workloads will be selected.
- Optionally, specify the Labels to include in or exclude from the Discovery action.
- Select Create new trigger.
- In the pop-up, select a scheduling mode, choose when to run the action and enter a name for the trigger.
- Select Save trigger.
- Select Save and exit.
Manage Cloud Discovery actions
- In your Lansweeper Site, go to Scanning > Discovery actions.
- Select the discovery action you want to edit.
- In the Cloud action detail view, manage the cloud provider, authentication information, filters, or triggers.
- Select Save and exit.