Cloud Account Integrations
Azure
Integrating Azure with SpaceONE

Integrating Azure with SpaceONE

Prerequisites

Before connecting your Azure account to SpaceONE, you need to configure Azure account settings for each resource you want to collect.

SpaceONE Service Account Registration

The following service accounts can be created in SpaceONE:

General Account

This is the basic account for collecting and managing individual Azure subscription resources. SpaceONE’s General Account can be created in three ways:

  • Option 1) You can directly register an Azure service principal using individual authentication keys.
  • Option 2) You can connect to a Trusted Account created in SpaceONE.
  • Option 3) Depending on the situation, you can create a new service principal without separate authentication keys.

Trusted Account

This is an account that manages multiple Azure subscriptions by connecting them at once.

  • You can create a Trusted Account in SpaceONE that can be connected to General Accounts.
  • The Trusted Account is referenced and utilized when accessing General Accounts.

Creating a General Account

Navigate to [Asset Inventory > Service Account] page

Go to the [Service Account] page, select [Azure], and click the General Account tab.

Click [+ Create] button

Configure Basic Information

Set up the basic information. Enter the information confirmed in Azure Account Settings.

  • Project: For General Accounts, you must specify a SpaceONE project.
  • Tags: You can specify tags based on Key:Value. These can be useful for managing service accounts after initial creation.

Configure Authentication Keys

Set up the authentication keys. Enter the information confirmed in Azure Account Settings.

Option 1) Directly register an account by entering encryption keys.

Option 2) Register by connecting encryption keys from an existing Trusted Account instead of entering them.

  • Azure Multi Tenant Secret: If the Trusted Account uses multi-tenant authentication, select the [Azure Multi Tenant Secret] type.

  • Azure Subscription ID: If the Trusted Account uses individual subscription method, select the [Azure Subscription ID] type.

Option 3) Depending on the situation, you can create a new account without separate authentication keys.

ℹ️
Service accounts for checking cost information only do not require encryption keys.