Container Security for Azure – ACR, AKS, ACI

Aqua Secures The Entire Container Lifecycle on Azure Cloud

Microsoft Azure is a growing collection of integrated cloud services that developers and IT professionals use to build, deploy, and manage applications through our global network of datacenters.

The Aqua platform works seamlessly on Azure Container Service, supporting Azure Container Registry, Azure Container Instances, and both Docker and Windows container formats. Additionally, Aqua has a native plug-in for Visual Studio Team Services, enabling container developers to automate security testing into their CI/CD pipeline.

Automate Security in The CI/CD Pipeline

Automated security into your CI/CD pipeline, including Aqua native plug-in for Visual Studio Team Services (VSTS), to prevent the introduction of vulnerabilities, bad configurations, or secrets into container images. Aqua the continuously monitors Azure ACR to ensure that no new vulnerabilities are present in stored images.

Runtime Protection

Aqua works seamlessly with Azure AKS and Azure Container Instances (ACI) to prevent unvetted containers from running. It automatically learns container behavior and ensures that containers only do what they are supposed to do in the application context. It detects and prevents activities that violate policy, defending against container-specific attacks.

Secrets Management

Leverage Azure Key Vault to securely deploy secrets – such as passwords, keys and tokens – into containers in runtime. Aqua makes it easy to manage, rotate, and revoke secrets in containers with no downtime, running only in memory without persistence on disk.

Visibility for Compliance and Forensics

Aqua integrates with 3rd party analytics and SIEM tools including Microsoft OMS to provide single pane-of-glass visibility into security and compliance-related events, with a granular audit trail of container activities.