Skip to main content

Azure Resources Integration

Learn how to configure your Azure instance and import data into Ardoq.

G
Written by Gleb Nikonov

Overview

The Azure Resources integration — built on the Microsoft Graph API — connects to your Azure tenant to bring in Azure resources into Ardoq as components and references.

It has support for the majority of commonly-used Azure resources. If you find that you have resources that are not supported out of the box, reach out to Ardoq Customer Support.

Setting Up — Microsoft Azure

Before Ardoq can import data from Azure, it requires configuring permissions in your Azure instance.

Application Configuration

  1. ​Add the Ardoq application to your Azure tenant

  2. Go to Enterprise applications, select the Ardoq application you added, and copy its Application ID

PowerShell Configuration

  1. Open PowerShell and log in with the az login command

  2. Assign a role for the Ardoq application with the scope you want for permissions:

    1. For example, if you want to grant the Reader role permission for your subscription, use the following command:

      az role assignment create --assignee <your_application_id> --role Reader --scope /subscriptions/<your_subscription_id>

    2. If you want to use multiple subscriptions, you will need to execute the above command for each subscription ID.

Setting Up — Ardoq

  1. Go to the main menu and select Home > Import and integrations

  2. Select Azure

  3. Go to the Connections tab and click Create new connection

  4. Fill in your connection credentials based on your Microsoft Azure details

  5. Click Create connection to finalize the configuration

Selecting Resources

This integration is focused on selecting Azure resources as the primary integrations pivot. Each resource brought into the Ardoq import process will have a Subscription ID, Resource Group ID, and Location, allowing you to filter the same resource types across different locations and subscriptions.

Automatic Addition and Deletion of Resources

When creating a scheduled integration, your resources will be updated in Ardoq as changes happen in Azure. That is, when a resource is added or deleted — with the Delete missing assets strategy enabled — in Azure, the next synchronization with Ardoq will add or remove the resource from the relevant Ardoq workspace.

Using Tags

The Azure Resources importer has two tag strategies for tags in Azure. A tag is a key-value pair in Azure. For example, the tag team: finance has the tag team and the tag value finance.

Tags as Tables

By default, all resources have a column called Tag Value IDs that contains a comma-separated list of IDs that correspond to the Tag Value IDs found in the Tag Values table. The Tag Values table further connects to the Tags table based on matching Tag IDs.

To use this approach make sure you select the Tags and Tag Values tables when selecting your resources. Our recommended reference structure for the three different tables are as follows:

Tags as Columns

In this approach, the each Tag on a resource will be brought in as its own column and the values in the column will represent the tag value for that resource. This is a simpler mapping for reporting, but loses power in visualization.

Note: This option will need to be enabled per resource using the Settings button in the Select data step of the import.

Mapping Azure Resources to Ardoq

We recommend reading through our article on mapping Azure resources into Ardoq components and references.

Supported Resources​

Ardoq has support for the following Azure resources:

Activity Log Alerts | microsoft.insights/activitylogalerts
Analysis Services Servers | microsoft.analysisservices/servers
API Management Services | microsoft.apimanagement/service
App Insights | microsoft.insights/components
Application Gateways | microsoft.network/applicationgateways
App Service Plans | microsoft.web/serverfarms
App Services (Web Sites) | microsoft.web/sites
Availability Sets | microsoft.compute/availabilitysets
AVS Private Clouds | microsoft.avs/privateclouds
Azure DevOps Organizations | microsoft.visualstudio/account
Bastion Hosts | microsoft.network/bastionhosts
CDN Profiles | microsoft.cdn/profiles
Cognitive Services Accounts | microsoft.cognitiveservices/accounts
Container Apps | microsoft.app/containerapps
Container Instances | microsoft.containerinstance/containergroups
Container Registries | microsoft.containerregistry/registries
Cosmos DB Accounts | microsoft.documentdb/databaseaccounts
Databricks Workspaces | microsoft.databricks/workspaces
Data Factories | microsoft.datafactory/factories
Disk Encryption Sets | microsoft.compute/diskencryptionsets
Disks | microsoft.compute/disks
DNS Zones | microsoft.network/dnszones
Event Hub Clusters | microsoft.eventhub/clusters
Event Hub Namespaces | microsoft.eventhub/namespaces
ExpressRoute Circuits | microsoft.network/expressroutecircuits
Fabric Capacities | microsoft.fabric/capacities
Firewalls | microsoft.network/azurefirewalls
Front Doors | microsoft.network/frontdoors
Healthcare Analytics Connectors | microsoft.healthcareapis/workspaces/analyticsconnectors
Healthcare DICOM Services | microsoft.healthcareapis/workspaces/dicomservices
Healthcare FHIR Services | microsoft.healthcareapis/workspaces/fhirservices
Healthcare IoT Connectors | microsoft.healthcareapis/workspaces/iotconnectors
Healthcare Services | microsoft.healthcareapis/services
Healthcare Workspaces | microsoft.healthcareapis/workspaces
Hybrid Machine Extensions | microsoft.hybridcompute/machines/extensions
Hybrid Machines | microsoft.hybridcompute/machines
Hybrid Private Link Scopes | microsoft.hybridcompute/privatelinkscopes
Key Vaults | microsoft.keyvault/vaults
Load Balancers | microsoft.network/loadbalancers
Locations | custom fetcher
Logic Apps | microsoft.logic/workflows
Maintenance Configurations | microsoft.maintenance/maintenanceconfigurations
Managed Clusters | microsoft.containerservice/managedclusters
Container App Environments | microsoft.app/managedenvironments
Management Groups | custom fetcher
MariaDB Servers | microsoft.dbformariadb/servers
Metric Alerts | microsoft.insights/metricalerts
MySQL Flexible Servers | microsoft.dbformysql/flexibleservers
MySQL Servers | microsoft.dbformysql/servers
Network Gateways | microsoft.network/virtualnetworkgateways
Portal Dashboards | microsoft.portal/dashboards
PostgreSQL Flexible Servers | microsoft.dbforpostgresql/flexibleservers
PostgreSQL Server Groups V2 | microsoft.dbforpostgresql/servergroupsv2
PostgreSQL Servers | microsoft.dbforpostgresql/servers
Power BI Capacities | microsoft.powerbidedicated/capacities
Private Endpoints | microsoft.network/privateendpoints
Public IP Addresses | microsoft.network/publicipaddresses
Purview Accounts | microsoft.purview/accounts
Redis Cache | microsoft.cache/redis
Relay Namespaces | microsoft.relay/namespaces
Resource Groups | microsoft.resources/subscriptions/resourcegroups
Scheduled Query Rules | microsoft.insights/scheduledqueryrules
Service Bus Namespaces | microsoft.servicebus/namespaces
Service Fabric Clusters | microsoft.servicefabric/clusters
Service Group Members | microsoft.relationships/servicegroupmember
Service Groups | microsoft.management/servicegroups
SQL Databases | microsoft.sql/servers/databases
SQL Elastic Pools | microsoft.sql/servers/elasticpools
SQL Instance Pools | microsoft.sql/instancepools
SQL Managed Databases | microsoft.sql/managedinstances/databases
SQL Managed Instances | microsoft.sql/managedinstances
SQL Servers | microsoft.sql/servers
SQL Virtual Clusters | microsoft.sql/virtualclusters
SQL Virtual Machines | microsoft.sqlvirtualmachine/sqlvirtualmachines
Storage Accounts | microsoft.storage/storageaccounts
Stream Analytics Jobs | microsoft.streamanalytics/streamingjobs
Subnets | child of microsoft.network/virtualnetworks
Subscriptions | microsoft.resources/subscriptions
Synapse Big Data Pools | microsoft.synapse/workspaces/bigdatapools
Synapse Private Link Hubs | microsoft.synapse/privatelinkhubs
Synapse SQL Pools | microsoft.synapse/workspaces/sqlpools
Synapse Workspaces | microsoft.synapse/workspaces
Tags | custom fetcher
Tag Values | custom fetcher
User Assigned Identities | microsoft.managedidentity/userassignedidentities
Virtual Machines | microsoft.compute/virtualmachines
Virtual Machine Scale Sets | microsoft.compute/virtualmachinescalesets
Virtual Networks | microsoft.network/virtualnetworks
Virtual WANs | microsoft.network/virtualwans

Did this answer your question?