Skip to main content
Skip table of contents

Azure Lift and Shift

Lucidum ingests data from all the solutions in your environment. Lucidum’s Machine Learning algorithms then enrich the ingested data through deduplication, triangulation, and aggregation. This allows Lucidum to discover every asset and every account and user, even those not discovered by your security solutions, so you can protect your environment.

For Microsoft environments, Lucidum can illustrate opportunities to move cloud assets and VMs from other vendors to Azure.

Lucidum can also find assets running Windows that might benefit from migration to Azure and the associated Microsoft security solutions, like Defender for Endpoints.

This example shows assets that could be migrated to Azure and associated Microsoft security solutions, like Defender for Endpoints.

Prerequisites

Connectors enable Lucidum to ingest data from your environment and discover, identify, and classify assets, data, and users.

Lucidum includes pre-built connectors for the most commonly used solutions for security, vulnerability scanning, cloud, data warehouse, identity management, logs, network, endpoint management, IP management, file sharing, and devops.

To configure a connector, you provide credentials that allow Lucidum secure, read-only access to the deployed solution. Lucidum then makes read-only API calls to ingest data from the solution.

To uncover all information in your environment, Lucidum recommends you configure Lucidum connectors for all of the solutions that you use, for example:

  • The directory solutions in your environment (For example, Azure AD, Microsoft AD, Jump Cloud, PingOne, OpenLDAP,)

  • The cloud solutions in your environment (for example, AWS, Azure, Google Cloud, Oracle Cloud)

  • The SSO solutions and identify and access management solutions in your environment (for example, Okta, AWS IAM, PingOne, OneLogic, SecurAuth)

  • The DHCP solutions in your environment (For example, Infoblox, Efficient IP, BlueCat)

  • The Mobile Device Management solutions in your environment (for example, Addigy, Citrix Endpoint, Jamf Pro, Kandji)

  • The VPN solutions in your environment (For example, Cisco AnyConnect, FortiClient, Palo Alto VPN, Citrix Gateway, Zscaler Private Access)

  • The Endpoint Management solutions in your environment (for example, Jamf, Intune, Citrix Endpoint Management, Symantec Endpoint Management, Hexnode)

  • The Endpoint Protection solutions in your environment (for example, Microsoft Defender for Endpoint, Trellix Endpoint Security, Symantec Endpoint Protection, SentinelOne, Crowdstrike Falcon)

  • The Endpoint Detection and Response solutions in your environment (for example, SentinelOne, Falcon Crowdstrike, Trend Micro XDR, Check Point Harmony Endpoint, Cortex XDR)

  • The cloud security solutions in your environment for cloud assets (for example, Netskope, Illumio Core, Orca, Trend Micro Cloud One, Sophos Central)

  • The anti-virus solutions or vulnerability management solutions in your environment (for example, Burp Suite, Cycognito, Greenbone, Kenna, Microsoft Defender, Qualys, Rapid7, Tenable, Vulcan)

  • The SIEM solutions in your environment (for example, Splunk, Trellix, Exabeam, QRadar, Microsoft Sentinel)

After Lucidum ingests data from these systems, Lucidum uses graph data, machine learning, and predictive analytics to detect and classify all assets and users, even those not detected by the solutions in your environment.

You can then view prebuilt dashboards, query Lucidum databases, export query results, or create custom dashboards.

Finding Assets that Could be Migrated to Azure

To find all cloud assets, we could write a query like:

CODE 
Cloud Asset (yes/no) == yes

To find all cloud assets running Windows, we could write a query like:

CODE 
Cloud Asset (yes/no) == yes

AND

OS and Version match Windows

To find all VM asssets, we could write a query like:

CODE 
Asset Type match VM

To find all VMs running Windows, we could write a query like:

CODE 
Asset Type match VM

AND

OS and Version match Windows

We can display these queries by cloud service or by vendor.

This dashboard includes:

  • Total Asset Records. Total number of assets in Lucidum system.

  • All On-Prem Servers. All on-premises servers.

  • All Workstations. All workstations.

  • Workstations Running Windows. Workstations running Windows. These Workstations could benefit from Microsoft security solutions.

  • All Cloud Assets. All cloud assets.

  • Cloud Assets by Cloud Services. All cloud assets by cloud service. Note that the top vendor is AWS, so there are opportunities to move cloud assets to Azure.

  • Cloud Assets Running Windows. Number of cloud assets running Windows. These cloud assets might benefit from Microsoft security solutions.

  • Cloud Assets Running Windows by Cloud Service. Number of cloud assets running windows, organized by cloud service.

  • All VMs. All virtual machines.

  • VMs by Vendor. All virtual machines by vendor. Note that the top vendor is AWS, so there are opportunities to move VMs to Azure.

  • VMs Running Windows. Number of virtual machines running windows. These virtual machines could benefit from Microsoft security solutions.

  • VMs Running Windows by Vendor. Number of virtual machines running windows, organized by vendor.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close