Connecting AIMS with your Azure subscription is a straightforward configuration requiring no agent installation.
To connect your Azure environment to the AIMS Platform you need to provide AIMS with information from your Azure Subscription.
Use Azure AD and create an Application that will have the required access to the Resources you want to monitor.
Follow the below steps and gather the required information (to configure the AIMS Platform):
- In the Azure Portal ( https://portal.azure.com ) perform the below steps to gather the required information:
1.1 You need an App registration to allow AIMS to monitor your Azure Resources.
1.1.1 Open App registrations in the Azure Portal.
1.1.2 Click New application registration.
1.1.3 Type any valid name.
1.1.4 Select "Web" in Redirect URI.
1.1.5 Add any URL f.ex. https://yourcompanyname.com/auth
1.1.6 Click Register.
1.1.7 Select the application you've created, and copy its Application ID for later use (refer img1.0)
1.2 In the application created in step 1.1 we need to create an access key:
1.2.1 Open "Certificates & secrets" -> "New client secret" in the application.
1.2.2 Type anything in the description.
1.2.3 Select duration from the “Expires” dropdown, we recommend selecting the maximum duration possible.
1.2.4 Click Save. A value will appear under Value.
1.2.5 Copy the value for later config in AIMS
1.3 You need to provide permissions to the Subscription or Resources that AIMS will monitor:
1.3.1 Open the Subscription you want to monitor in the Azure Portal.
1.3.2 Open Access control (IAM) of the Subscription.
1.3.3 Click Add.
1.3.4 Select 'Reader' in Role.
1.3.5 Provide access to the required User/group.
1.3.6 Click Next and Save.
1.4 We need the Subscription ID from the Azure AD:
1.4.1 Open the Subscription you want to monitor in the Azure Portal.
1.4.2 Open Properties.
1.4.3 Copy the Subscription ID value.
1.5 We need the primary Directory domain from the Azure AD:
1.5.1 Open Azure Active Directory in the Azure Portal.
1.5.2 Open Custom Domain Names.
1.5.3 Copy the Directory Name in the primary domain.