Getting Started¶

Contents¶

Get Started in 5 Minutes¶

Note

For a more detailed guide, see Setup - AWS & AWS GovCloud, Setup - Azure & Azure Government, Setup- Google Cloud or Setup- Repository.

Want to jump right into using Fugue? Follow the steps below to have an environment up and running in 5 minutes.

Step 1: Environment Setup¶

Enter your environment’s name and select the provider (AWS, Azure, Google, Repository):

Step 2: Environment Settings¶

AWS and AWS GovCloud¶

Select the region(s) and resource types to scan, then create an IAM role and enter the role ARN:

Azure and Azure Government¶

Create an Azure Active Directory application and service principal.
Assign the service principal a Reader RBAC role.
1. If you want access to Active Directory resources then additionally assign the required AD role. We recommend only activating Active Directory support for the credentials associated with a single Fugue environment. Your Active Directory resources will show up in this environment and if you add Active Directory permissions in other environments, the resources will be duplicated.
Generate a client secret.
Enter tenant ID, subscription ID, application (client) ID, and client secret into the environment creation page.

5. Select resource groups to scan.

Google¶

Enable Google Service APIs.
Create a Service Account and enter the returned email address back in the Fugue environment setup.

Repository¶

Enter the Repository URL.
Enter the Branch Name.

Step 3: Select Compliance Families¶

Select the compliance families you want Fugue to use to assess your infrastructure (AWS, Azure, or Google):

Note

Select Yes to use the list recommended compliance families, which includes Fugue out-of-the-box compliance families, as well as custom families.

Note

Repository environments currently utilize compliance settings that are configured locally with Regula. In a subsequent release, users will be able to manage compliance settings with the Fugue SaaS UI, API, and CLI.