Microsoft Azure Non-CSP Cloud Account
Overview
You can onboard your Microsoft Azure Pay-as-you-go (PAYG) or Enterprise Account to the HyperCloudTM Platform (HCP.) To onboard your AWS cloud account to the HCP portal, follow these steps:
Prerequisites for Onboarding AWS Cloud Account
Before You Begin
Ensure that you have a Microsoft Azure pay-as-you-go PAYG or an Enterprise account subscription. [1]
You’ll need to configure or retrieve the following information from your Microsoft Azure Active Directory account:
Azure Subscription Access.
Subscription ID.
Directory ID or the Tenant ID.
Register a new Application via App Registration on your Azure Active Directory account to generate an Application ID. Copy this ID, and assign the following permissions:
Reader.
Billing Reader.
Contributor Role: this is an optional role that’s required for Service Orchestration only.
Generate a new secret for your application and save the key value.
From your User Settings, turn off the App Registration toggle to No.
If you turn on the App Registration toggle to Yes, you’ll need Administrator access to register your applications.
The HCP portal periodically queries your Azure account to retrieve the state change information.
The default time for querying your Azure account is 90 seconds.
To capture the real-time state change, provide Azure event hub details at the time of onboarding your Azure Account. [2]
To create a new event hub,
From the Azure portal, Home > Events Hub > Create a new Events Hub Namespace Name. [3]
Obtain the Shared access policies (SAS) Policy Name (example: RootManageSharedAccessKey). Enter this as the Shared Access Signature Key Name in HyperCloudâ„¢ Azure Account Configuration.
From the Event Hub Namespace > Share Access Policy > Obtain the Primary Key. Enter this as the Shared Access Signature Key in HyperCloudâ„¢ Azure Account Configuration. [4]
Use an existing event hub
Using the steps from the previous step, obtain the Event Hub Namespace Name, Shared Access policy Name and Shared Access Key Name.
From the Event Hub Namespace, obtain the Primary Key from the Shared access policy.
Click on Event Hub (example: insights-activity-logs) > Click on Consumer groups > Create a new Consumer group with the name HyperGrid. Enter this name in the HyperCloudâ„¢ Azure Account Configuration. [5]
Configure a new storage account (skip this step if you’re using an existing storage account)
From Storage Accounts, select a storage account or create a new storage account. Click on the Storage Account > Select Access Keys > Select Key 1 Connection String which will be used as the Storage Connection String.
From Storage Account > Create a Blob Container > Obtain the blob container name which will be used as the Storage Container Name.
Using an existing storage account details
From Storage Accounts > Select the storage account used when Exporting Activity log to Event Hub > Select Access Keys > Select Key 1 Connection String. Enter this in HyperCloudâ„¢ Azure Account configuration page.
From Storage Account, select Blob Container > Obtain the blob container name. Enter this in HyperCloudâ„¢ Azure Account configuration page.
Configuring Activity Monitoring (verify if this is already configured)
From Home > Monitor > Activity Log > Select Diagnostics Settings > Click on Add Diagnostic setting.
Enter a name HyperGrid-Diagnostics.
Under Log > Select Administrative and under Destination Details:
Select Archive to a storage account and select an existing storage account.
Select Stream to an event hub and select an existing event hub
Obtain Event Hub name
Return to Events Hub Namespace > Locate the event hub with the name insights-activity-logs > Select Capture > ON > Capture Provider - Azure Storage > Select Storage Container and select the blob container created in the previous step > Save Changes.
Notes
[1] Sponsored and CSP Offer subscription can be onboarded for Governance and Service Orchestration. However, these subscriptions are not supported for Azure Cost & Usage & Resource Management.
[2] Microsoft Azure allows only 1 active event hub at any given time. In this case, use an existing event hub but create a new Consumer Group with the name HyperGrid.
Event hub pricing tier must be Standard pricing since only standard pricing tier allows more than 1 Consumer Group
[3] Must Select Standard Pricing.
Rest of the options can be selected as per customer's choice.
[4] An event hub with the name insights-activity-logs will get created automatically once you enable Activity Monitoring to Export diagnostic settings to Event hub and Storage account.
[5] A consumer group must be created to use an existing event hub.
Onboarding Microsoft Azure (Non-CSP) Account to HyperCloudâ„¢
Login to HyperCloudâ„¢ SaaS portal using a valid credential.
Under the Administration Tab > Account Management > Select Azure > Non-CSP > Add Account and populate all the fields as per the information collected in the Prerequisites for managing Microsoft Azure Accounts using HyperCloudâ„¢ Platform section.
Â
© 2020 CloudSphere