To allow CloudShell Colony to provision cloud infrastructure, on your behalf, in your Azure cloud account, you need to grant CloudShell Colony permission to access your Azure account. You can remove this permission at any point, directly from your Azure Portal.

Granting CloudShell Colony the permission to access your Azure account, is done through a short authentication process, during which CloudShell Colony created a slim management layer that keeps your data safe.

The authentication process is done by running a shell script, in your Azure account, which creates the following resources:

1. Active Directory Application– This Active Directory application entry is configured to access the Azure CLI and will be used for all communication between CloudShell Colony and your Azure account.
2. Storage Account– This storage account is used for keeping your virtual machined safe. CloudShell Colony uses it to store certificates that are required in order to access your virtual machines. The certificates are kept only in your own account. 
3. Cosmos DB– CloudShell Colony uses this database to keep track of all the infrastructure you create using CloudShell Colony.

NOTE: part of the following procedure is performed in Azure Portal. Azure Portal will open in a new browser tab. 

Adding an Azure Cloud Account

To add a cloud account:

1. Open the Settings page.
2. Click the Cloud Account tab.
3. Click +Add Another Cloud Account.
4. Select Azure and click Next.
   Your Microsoft Azure Portal opens in a new browser tab.
   1. Login with your Administrator permissions.
   2. From the Azure top-right navigation pane, launch Cloud Shell to run Azure’s interactive shell.
      The Shell pane opens.
   3. If this is the first time you are running Cloud Shell, follow Azure’s instruction and create a storage account.
   4. In the Cloud Shell, click the dropdown menu and select the Bash environment.
   5. Copy the following shell commands, paste it into Azure's shell, and then press Enter on your keyboard:
      

      curl https://raw.githubusercontent.com/cloudshell-colony/setup/master/azure.sh  > colony.sh && 
      chmod +x colony.sh && 
      ./colony.sh

      The script is running. Please wait until it completes and a token is provided.

   6. Copy the token to your clipboard. 
5. Return to CloudShell Colony's browser tab and paste the copied token into the token field. 
6. Click Authenticate.

Deleting an Azure Cloud Account

You can remove CloudShell Colony's permission to access your Azure account, at any point in time, directly from your Azure Portal. To learn how to delete your Azure cloud account, see Deleting your Azure Cloud Account.