Introduction

Azure Tenant Integration installs all Azure Cloud subscriptions associated with a tenant as integrations in OpsRamp under the same client where the tenant integration is set up. To install all subscriptions for the tenant, users must provide the Tenant ID, Client ID, and Client Secret as input to the Azure Tenant Integration.

The Azure tenant integration provides you several key benefits:

  • Centralized Management: All Azure Cloud subscriptions under a tenant are integrated into OpsRamp under a single client, allowing for easier and more centralized management of resources.
  • Simplified Operations: With all subscriptions automatically integrated, users can streamline their operations, reducing the need for manual configuration and oversight across multiple subscriptions.
  • Enhanced Visibility: Users gain comprehensive visibility into all their Azure resources within OpsRamp, enabling better monitoring, management, and decision-making.
  • Security and Compliance: By using the Tenant ID, Client ID, and Client Secret, users ensure secure integration, maintaining the confidentiality and integrity of their Azure subscriptions.

Prerequisites

Configuration in Azure cloud

Step 1: Create a New Application in App Registrations

  1. Log in to the Azure Portal.

  2. Search for App registrations and click New registration.

  3. Provide a name for the application.

  4. Under Supported account types, select Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant).

  5. Click Register.

  6. Once the app is registered, navigate to the Overview page. Copy the Directory (tenant) ID to use as the Tenant ID, and the Application (client) ID to use as the Client ID during installation in OpsRamp portal.

  7. Navigate to Certificates & Secrets click New client secret to create a new secret key. Copy the Value to use as the Secret Key during installation in OpsRamp portal.

Step 2: Add Reader Role to the Application Created Earlier

After registering the app, follow below steps:

  1. Search for Subscriptions in the Azure Portal and select the relevant subscription.

  2. Click Access control (IAM).

  3. Click +ADD and then select Add role assignment from the drop-down list.

  4. Choose the Reader role and click Next.

  5. Under Members, click + Select members, and choose the app you wish to assign the role to.

  6. Once selected, click Review + assign.

OpsRamp configuration

  1. Navigate to the Setup > Account.
  2. On the ACCOUNT DETAILS page, select Integrations.
  3. The INSTALLED INTEGRATIONS page is displayed with all the installed applications.
  1. Click + ADD on the INSTALLED INTEGRATIONS page. The AVAILABLE INTEGRATIONS AND APPS page displays all the available applications along with the newly created application.

  2. Click ADD in the Azure application.

  3. In the ADD AZURE page, select Type as Tenant to install Azure Tenant Integration.

  4. Enter the account information:

FunctionalityDescription
Tenant ID(required) Enter the client ID that was generated during

Create a New Application in App Registrations.

Client ID(required) Enter the client ID that was generated during

Create a New Application in App Registrations.

Secret Key(required) Enter the secret key. Use the Value generated during

Create a New Application in App Registrations as Secret Key.

Environment(required) Choose Azure.
  1. You can choose All resources or choose specific resources to discover from your AWS account. If you would like to select specific resources, check the checkboxes, and select the resources you need.

  2. Click Next.

  3. Select the actions to be performed on the resources.

    • Manage Device: Select this option such that all the discovered resources are in a managed state.
    • Stream Azure Events: Provide Azure connection string-primary key. See instructions for configuring the connection string.
    • Collect Cost Analytics: Select this option to collect project cost details resources utilized.
    • Assign Management Profile: Select a gateway management profile from the drop-down list.

  4. Click Install Agent (Linux only) if the agent needs to be installed on the device and select the device credentials.

  5. Select the Discovery Schedule option to schedule a discovery and define the preferred Recurrence pattern.

  6. Click FINISH. The Azure app is installed.