Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Note
Effective April 1, 2025, Microsoft Entra Permissions Management will no longer be available for purchase, and on November 1, 2025, we'll retire and discontinue support of this product. More information can be found here.
This article describes how to add an Amazon Web Services (AWS) account, Microsoft Azure subscription, or Google Cloud Platform (GCP) project in Microsoft Permissions Management after you've completed the onboarding process.
Add an AWS account after onboarding is complete
- In the Permissions Management home page, select Settings (the gear icon), and then select the Data collectors tab. 
- On the Data collectors dashboard, select AWS. 
- Select the ellipses (...) at the end of the row, and then select Edit Configuration. - The Permissions Management Onboarding - Summary page displays. 
- Go to AWS Account IDs, and then select Edit (the pencil icon). - The Permissions Management Onboarding - AWS Member Account Details page displays. 
- Go to Enter Your AWS Account IDs, then select Add (the plus + sign). 
- Copy your account ID from AWS and paste it into the Enter Account ID box. - The AWS account ID is automatically added to the script. - If you want to add more account IDs, repeat steps 5 and 6 to add up to a total of 10 account IDs. 
- Copy the script. 
- Go to AWS and start the Cloud Shell. 
- Create a new script for the new account and press the Enter key. 
- Paste the script you copied. 
- Locate the account line, delete the original account ID (the one that was previously added), and then run the script. 
- Return to Permissions Management, and the new account ID you added will be added to the list of account IDs displayed in the Permissions Management Onboarding - Summary page. 
- Select Verify now & save. - When your changes are saved, the following message displays: Successfully updated configuration. 
Add an Azure subscription after onboarding is complete
- In the Permissions Management home page, select Settings (the gear icon), and then select the Data collectors tab. 
- On the Data collectors dashboard, select Azure. 
- Select the ellipses (...) at the end of the row, and then select Edit Configuration. - The Permissions Management Onboarding - Summary page displays. 
- Go to Azure subscription IDs, then select Edit (the pencil icon). 
- Go to Enter your Azure Subscription IDs, then select Add subscription (the plus + sign). 
- Copy and paste your subscription ID from Azure and paste it into the subscription ID box. - The subscription ID is automatically added to the subscriptions line in the script. - If you want to add more subscription IDs, repeat steps 4 and 5 to add up to a total of 10 subscriptions. 
- Copy the script. 
- Go to Azure and start the Cloud Shell. 
- Create a new script for the new subscription and press enter. 
- Paste the script you copied. 
- Locate the subscription line and delete the original subscription ID (the one that was previously added), and then run the script. 
- Return to Permissions Management, and the new subscription ID you added will be added to the list of subscription IDs displayed in the Permissions Management Onboarding - Summary page. 
- Select Verify now & save. - When your changes are saved, the following message displays: Successfully updated configuration. 
Add a GCP project after onboarding is complete
- In the Permissions Management home page, select Settings (the gear icon), and then select the Data collectors tab. 
- On the Data collectors dashboard, select GCP. 
- Select the ellipses (...) at the end of the row, and then select Edit Configuration. - The Permissions Management Onboarding - Summary page displays. 
- Go to GCP Project IDs, and then select Edit (the pencil icon). 
- Go to Enter your GCP Project IDs, and then select Add Project ID (the plus + sign). 
- Copy and paste your project ID from Azure and paste it into the Project ID box. - The project ID is automatically added to the Project ID line in the script. - If you want to add more project IDs, repeat steps 4 and 5 to add up to a total of 10 project IDs. 
- Copy the script. 
- Go to GCP and start the Cloud Shell. 
- Create a new script for the new project ID and press enter. 
- Paste the script you copied. 
- Locate the project ID line and delete the original project ID (the one that was previously added), and then run the script. 
- Return to Permissions Management, and the new project ID you added will be added to the list of project IDs displayed in the Permissions Management Onboarding - Summary page. 
- Select Verify now & save. - When your changes are saved, the following message displays: Successfully updated configuration. 
Next steps
- For information on how to onboard an Amazon Web Services (AWS) account, see Onboard an AWS account.
- For information on how to onboard a Microsoft Azure subscription, see Onboard a Microsoft Azure subscription.
- For information on how to onboard a Google Cloud Platform (GCP) project, see Onboard a GCP project.
- For information on how to enable or disable the controller after onboarding is complete, see Enable or disable the controller.