Authenticate and Monitor Azure Resources with Custom App

Azure resources can be discovered and monitored by Site24x7 by creating a custom application in the Microsoft Azure portal and assigning the necessary permissions to the custom app to enable Site24x7 to proceed with resource discovery and monitoring.

The custom app creation involves three major parts:

• Part 1: Creating an Azure Active Directory application
• Part 2: Providing the necessary permissions to the custom app
• Part 3: Completing the configuration in the Site24x7 web client

Part 1: Creating an Azure Active Directory Application

1. Log in to the Microsoft Azure portal and navigate to the Azure Active Directory section.
   
2. Click on + Add > App Registration. 
   
3. In the Register an application page, provide the Name of the application, select the Supported account types, and specify the Redirect URI.
   • Name: Provide a unique name for identification purposes. Example: Site24x7 Azure App
   • Supported account types: Select Accounts in any organizational directory (Any Azure AD directory - Multitenant).
     
   • Redirect URI: Select Web from the drop-down and mention any valid URL (for example: https://localhost:8080).
     Click Register.
     

Once the application is registered in the Azure portal, you will be taken to a new blade with information about the application. Copy the Application (client) ID and save it for later use.

Next, go back to Home and navigate to Subscriptions > click on the subscription that you wish to monitor > Access Control (IAM) > + Add > Add role assignment.

In the Add role assignment page, select the Role as Contributor/Reader, select User, group, or service principle for the option Assign Access to, and Select the custom application that you have created from the drop-down. Save the changes.

Part 2: Providing the Necessary Permissions to the Custom App

1. Now, go back to Azure Active Directory > App Registrations (under Manage in the left bar) > click on the app name under Owned Applications. 
   
2. Under Manage, click on Certificates and secrets.
   
3. Under Client secrets, click on + New client secret. In the Add a client secret window, provide a Description, select Expires as Recommended: 6 months, and click Add.
    
4. Copy the Secret value that appears and save it for later use. This value would disappear after a while. So, copy and paste the value as soon as you save it. 
   

Go to Azure Active Directory > Properties. Copy the Tenant ID provided and save it for later use.

Part 3: Completing the Configuration in the Site24x7 Web Client

1. In the Site24x7 web client, go to Azure > Add Azure Monitor > Authenticate with Custom App. 
2. Paste the Tenant ID and the Secret value, obtained from Part 2: Providing the Necessary Permissions to the Custom App, in the Tenant ID and Application Secret Key fields respectively. Paste the Application (client) ID obtained from Part 1: Creating an Azure Active Directory Application in the Application ID field.    

Click on Proceed with Resource Discovery. The resources will be discovered using the custom application registered in the Azure portal.

Related Articles

• Authenticate with the Site24x7 app
• Guidance report
• List of Azure services monitored by Site24x7
• FAQs