In order to add a Microsoft Azure account, you will need to collect the below pieces of information:
- Subscription Id
- Tenant Id
- Client Id
- Client Secret
Obviously before you can configure your Azure account to obtain the above data, you will have to make sure that the account you have used to log-in to Azure Portal has sufficient privileges. You will also need an Azure Application.
If you do not have an application already, you can register a new application. To do so:
- Go to Azure Active Directory
- On the left-side pane click on App Registration
- Then click on “New Registration”
- Click on “Register” at the bottom of the screen.
This will create an application for you.
Once you see the newly created application in the list of applications, click on it and go to its details page.
Take notes of Application Id and Directory Id. Application Id is also known as Client Id. Likewise, Directory Id is known as Tenant Id. You will need these two IDs to register your account in Save On Clouds.
The next step is to authorise this application to access the subscription.
In Azure Portal dashboard, find “Subscriptions” and click on your desired subscription.
If you have more than one subscription you will have to register one Cloud Account (in Save On Clouds) per Azure Subscription.
Click on the Subscription name (Azure subscription 1 in the above example) and then choose Access Control (IAM) from the list of options.
After clicking on Access Control (IAM), find “Add role assignment” card and click on Add button.
From the Role drop-down box, choose Contributor.
Then in the “Select” box, type-in the name of your applciation. You only need to type the first few letters of your application.
Then click on Save button.
The last step is creating a Secret Key, so that you can make API calls.
To do that, you have to go back to the Azure Portal dashboard, then go to:
Azure Active Directory / App Registrations
Then click on your application, and after seeing the details of your application, click on “Certificates & Secrets”.
Click on New Client Secret button.
This will create a new Client Secret. Copy the Client Secret to a safe location and keep it as this is the only time you can see the client secret.
Now you have the below information:
- Subscription Id (from Home / Subscriptions)
- Tenant Id: It is your Directory Id that you get from Application
- Client Id: It is your Application Id that you get from Application
- Client Secret
By having the four above keys, head back to Save On Cloud and:
- Go to Cloud Accounts
- Click on Azure Icon
- Enter Subscription Id, Tenant Id, Client Id and Client Secret
- Enter a name for the connection
- Click on Test Connection
- Click on “Create Account” button.
Please be advised that if you have multiple Resource Groups, you do not need to register each resource group separately.