Axura

Quick Start Guide

Get up and running with Axura in under 5 minutes. Connect your first integration, run your first scan, and start collecting compliance evidence automatically.
5 min read
Updated: January 2026
Quick Start
Setup
Tutorial
💡 Prerequisites

Before you begin, make sure you have admin access to your AWS, GCP, or GitHub account. You'll also need a valid email address to create your Axura account.

Step-by-Step Setup

1
Create Your Account

Visit axura.io/signup and create your free account. You can sign up with your work email or use Google/Microsoft SSO for faster onboarding.

Email: your-work-email@company.com
Password: (min 12 characters with uppercase, lowercase, number, and symbol)
Organization: Your Company Name

After signup, you'll receive a verification email. Click the link to activate your account.

2
Create Your Organization

Once logged in, you'll be prompted to set up your organization. Enter your company details and select the compliance frameworks you're targeting.

Recommended Frameworks for Startups:
  • SOC 2 Type II - Required by most enterprise customers
  • ISO 27001 - International security standard
  • GDPR - If you have EU customers
3
Connect Your First Integration

Navigate to Settings → Integrations and click "Add Integration". We recommend starting with AWS as it provides the most comprehensive security insights.

AWS Integration (Recommended)

For AWS, we use a read-only IAM role that Axura assumes to scan your resources. This is the most secure method as no credentials are stored.

Create IAM Role
# Option 1: Use our CloudFormation template (easiest)
# Click "Deploy to AWS" in the integration setup wizard

# Option 2: Create manually with this policy
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "ec2:Describe*",
        "s3:GetBucket*",
        "s3:ListBucket",
        "iam:Get*",
        "iam:List*",
        "cloudtrail:Describe*",
        "cloudtrail:GetTrailStatus",
        "config:Describe*",
        "guardduty:Get*",
        "guardduty:List*",
        "kms:Describe*",
        "kms:GetKey*",
        "rds:Describe*",
        "lambda:Get*",
        "lambda:List*",
        "secretsmanager:List*"
      ],
      "Resource": "*"
    }
  ]
}
⚠️ Security Note

Axura uses read-only access. We never modify, delete, or create resources in your cloud environment. All scanning is non-destructive.

4
Run Your First Scan

After connecting your integration, click "Run Scan" to start collecting evidence. The initial scan typically takes 2-5 minutes depending on your infrastructure size.

✅ What Gets Scanned:
  • IAM users, roles, and policies
  • S3 bucket configurations
  • EC2 instances and security groups
  • RDS database encryption settings
  • CloudTrail and logging configurations
  • KMS key policies
  • VPC and network configurations
5
Review Your Compliance Dashboard

Once the scan completes, navigate to your Dashboard to see your compliance posture. You'll see:

  • Compliance Score - Overall percentage across selected frameworks
  • Findings - Security issues discovered during the scan
  • Evidence - Automatically collected compliance evidence
  • Controls - Status of individual compliance controls

What's Next?

Congratulations! You've successfully set up Axura and run your first compliance scan. Here are some recommended next steps:

Add More Integrations

Connect GitHub, GCP, Okta, and other tools for comprehensive coverage.

Review Findings

Understand and remediate security findings discovered in your environment.

Set Up Monitoring

Configure continuous monitoring and alerts for compliance drift.

Explore AI Copilot

Ask questions and get AI-powered compliance guidance.

Need Help?

Our support team is available 24/7 to help you with setup. Contact us at support@axura.io or use the chat widget in the bottom-right corner of the app.

Previous
Introduction
Next
Core Concepts