Splunk® Supported Add-ons

Splunk Add-on for Microsoft Cloud Services

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Configure an active directory application in Azure Active Directory for the Splunk Add-on for Microsoft Cloud Services

To gather data from the Windows Azure Service Management APIs, you must first create an active directory application in Azure AD.

Follow the instructions in the Microsoft documentation to create an active directory application: Use portal to create an Azure Active Directory application and service principal that can access resources for either your Azure portal or Azure Government portal.

When prompted, select or enter the following parameters:

  • Client ID: Required for Azure App account.
    • Copy this value. You need this value and a valid secret key to connect to your account from the add-on.
  • Key: Required for Azure App account.
    • Copy this value to a secure location as soon as the Azure AD admin console displays it.
  • Tenant ID: Required for Azure App account.
    • Copy this value for the future use.

Application permissions to access Windows Azure Service Management APIs

Select Access Azure Service Management as organization under Delegated Permissions.

Grant the active directory application read access

After creating the Active Directory Application, login to either https://portal.azure.com or https://portal.azure.us on the Azure website, and perform the following steps:

  1. You must have a Premium P1 Active Directory level edition or higher to perform this operation. See https://azure.microsoft.com/en-us/documentation/articles/resource-group-create-service-principal-portal/ on the Microsoft Azure website for more information on who can access resources.
  2. Navigate to Home > Subscriptions.
  3. Select the active subscription that you want to use from the Subscription Name column.
  4. Select Access control (IAM)
  5. Select Role assignments
  6. Select Add role assignment.
  7. In the Add role assignment drop-down list, perform the following steps:
    1. Select Reader from the Role dropdown list.
    2. Select User, group, or service principal from the Assign access to dropdown list, if it has not already been selected.
    3. Select your Active Directory Application by searching for it by name in the dropdown.
  8. Save your changes.
Last modified on 06 October, 2023
PREVIOUS
Migrate from the Splunk Add-on for Microsoft Azure 		  NEXT
Configure a storage account in Microsoft Cloud Services

This documentation applies to the following versions of Splunk® Supported Add-ons: released

Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters