Export Data to Azure Blob Storage

Export your Mondoo security data to Azure Blob Storage for long-term retention, custom reporting, or integration with your Azure-based data pipeline. Once configured, Mondoo automatically exports assets and vulnerabilities approximately every 24 hours. Each integration exports data from a single space.

Requirements

• A Microsoft Azure account with an active subscription

• Permission to manage storage containers in the Azure account

• Editor or Owner access to the space from which you want to export data

Create a new storage account

1. Log into the Azure portal as a global administrator, application administrator, or cloud application administrator.

2. Select or search for Storage accounts.

3. In the toolbar, select + Create.

   

4. Give the account a name that indicates it's for Mondoo. Choose your own region and performance options and select the Next button.

5. Select the Networking tab, select Enable public access from all networks, and select the Review and create button.

   

6. Select the Create button and wait for Azure to create and deploy the storage account. When finished, select the Go to resource button.

7. In the left menu, under Security and networking, select Networking. Ensure that Enabled from all networks is selected and there is no message about requiring a private endpoint.

   

Create a new container

1. Log into the Azure portal as a global administrator, application administrator, or cloud application administrator.

2. Select or search for Storage accounts.

3. Select the storage account where you want to export your Mondoo data.

4. In the left menu, under Data storage, select Containers.

   

5. On the toolbar, select + Container.

   

6. Name the container and select the Create button.

Create a container access token

Mondoo relies on a shared access token to export data to Azure storage blobs. Create a shared access token for the container where you want Mondoo to export data from the Mondoo space.

1. Log into the Azure portal as a global administrator, application administrator, or cloud application administrator.

2. Select or search for Storage accounts.

3. Select the storage account that holds the container where you want to export Mondoo data.

4. In the left menu, under Data storage, select Containers.

   

5. Select the container where you want to export Mondoo data.

6. In the left navigation, under Settings, select Shared access tokens.

   

7. In the Permissions drop-down list, select:

   • Read

   • Add

   • Create

   • Write

   • List

8. Under Expiry, set a date far enough in the future that your Mondoo export continues working.

9. Select the Generate SAS token and URL button.

   

10. In the Blob SAS URL box, select the copy icon to copy the URL to your clipboard. You need this for your next steps below.

Add an Azure Blob Storage integration

1. In a new browser tab, open the Mondoo Console. Navigate to the space from which you want to export data. In the side navigation bar, select Integrations. Under Exports, select Azure Blob Storage.

   

2. Enter a name for the integration.

   

3. In the Blob SAS URL box, paste the URL you copied in the previous section.

4. Under Export as, select JSON or CSV.

5. Select CREATE EXPORT.

   Mondoo begins exporting data from your space. When the initial export completes, the status becomes active. Exports then run automatically approximately every 24 hours.

Manage your integration

To view your integration, select Azure Blob Storage under Integrations in the side navigation bar, then select the integration.

Trigger a manual export

Exports run approximately every 24 hours. To export immediately, select the SCHEDULE NOW button on the integration detail page.

Statuses

Remove the integration

Select the trash can icon and confirm the deletion. Mondoo stops future exports but does not delete data already exported to Azure Blob Storage.

Next steps

• Export JSONL schema reference

• Export data to other destinations

---