Package: Invicti AppSec Enterprise (on-premise, on-demand)
Azure OpenAI
Azure OpenAI Service is Microsoft's cloud-hosted offering of OpenAI's language models, deployed and managed through Microsoft Azure. The Invicti AppSec integration with Azure OpenAI enables AI-powered features — such as vulnerability remediation guidance and security analysis — by connecting to a model deployed in your own Azure environment.
Purpose in Invicti AppSec
Azure OpenAI is used in Invicti AppSec as an LLM Provider — supplying the language model that powers AI-assisted security features from within your Azure infrastructure.
| Use Case | Description |
|---|---|
| AI remediation guidance | Generate fix recommendations for discovered vulnerabilities using your Azure-hosted OpenAI deployment |
| Security analysis | Use Azure OpenAI's language models to assist in triage and prioritization of security findings |
| Data residency compliance | Keep AI requests within your Azure tenant and region, meeting organizational data governance requirements |
Where it is used
| Page | Navigation Path | Purpose |
|---|---|---|
| Integrations — LLM Providers | Integrations › LLM Providers | Admin activation and model configuration |
Prerequisites
Before activating the integration, gather the following details from your Azure portal:
| Field | Description | Required |
|---|---|---|
| API Key | The API key for your Azure OpenAI resource | Yes |
| Resource Name | The name of your Azure OpenAI resource (the subdomain part of your endpoint URL) | Yes |
| Deployment Name | The name of the specific model deployment you want Invicti AppSec to use | Yes |
| API Version | The Azure OpenAI REST API version (defaults to 2024-10-21 if left blank) | No |
Obtain credentials (on the Azure side)
API Key:
- Open the Azure portal and navigate to your Azure OpenAI resource.
- In the left menu, select Keys and Endpoint.
- Copy KEY 1 or KEY 2 — either can be used.
Resource Name:
- In your Azure OpenAI resource overview, locate the Endpoint URL. It follows the format:
https://<resource-name>.openai.azure.com/ - The
<resource-name>portion is your Resource Name.
Deployment Name:
- In the Azure portal, navigate to your Azure OpenAI resource.
- Select Model deployments (or open Azure AI Foundry and go to Deployments).
- Find the deployment you want to use and copy its Deployment name.
API version (optional):
- Invicti AppSec defaults to
2024-10-21if this field is left blank. - To use a specific version, refer to the Azure OpenAI API release notes for available versions.
Activation steps
Step 1: Navigate to Integrations
From the left sidebar, click Integrations.
Step 2: Open the LLM Providers tab
On the Integrations page, click the LLM Providers tab.
Step 3: Find and activate Azure OpenAI
Locate the Azure OpenAI card.
- If it isn't yet activated, click Activate to open the settings drawer.
- If it's already activated, click the gear icon to open the settings drawer and reconfigure.
Step 4: Fill in the required fields
In the settings drawer, enter your Azure OpenAI credentials:
| Field | Description | Required |
|---|---|---|
| API Key | The API key from your Azure OpenAI resource | Yes |
| Resource Name | Your Azure OpenAI resource name (subdomain of the endpoint URL) | Yes |
| Deployment Name | The name of the model deployment to use | Yes |
| API Version | Azure OpenAI API version (leave blank to use the default 2024-10-21) | No |
Unlike other LLM providers, Azure OpenAI doesn't use a separate Model dropdown — the model is determined by the Deployment Name you configure.
Step 5: Test the connection
Click Test Connection. A green "Connection successful" message confirms that Invicti AppSec can reach your Azure OpenAI deployment with the provided credentials.
Step 6: Save
Click Save to complete the activation.
Summary
| Step | Action |
|---|---|
| 1 | Navigate to Integrations from the sidebar |
| 2 | Select the LLM Providers tab |
| 3 | Find Azure OpenAI and click Activate (or the gear icon) |
| 4 | Enter your API Key, Resource Name, Deployment Name, and optionally API Version |
| 5 | Click Test Connection — verify the success message |
| 6 | Click Save |
Troubleshooting
| Issue | Resolution |
|---|---|
| Connection failed | Verify the API key, resource name, and deployment name are all correct. Ensure the Azure OpenAI resource is deployed and accessible. |
| Invalid API key | Regenerate the key from Keys and Endpoint in your Azure OpenAI resource and update the configuration in Invicti AppSec. |
| Resource not found | Confirm the Resource Name matches the subdomain of your Azure OpenAI endpoint URL exactly. |
| Deployment not found | Verify the Deployment Name matches the name shown in Model deployments in the Azure portal. |
| API version error | Leave the API Version field blank to use the default, or check the Azure OpenAI documentation for a supported API version string. |
| 401 / 403 Unauthorized | Confirm the API key belongs to the correct Azure OpenAI resource and hasn't been disabled or rotated. |
Need help?
Invicti Support team is ready to provide you with technical help. Go to Help Center