The Azure onboarding process consists of three main parts:
- Register Anodot as a trusted app in Azure Active Directory and create a storage account.
- Connect the Azure account to the Anodot app.
- Create an application in Anodot.
Part 1: Register Anodot as a trusted app in Azure Active Directory and create a storage account
- Navigate to the Azure portal and log in.
-
In the left navigation menu, click Azure Active Directory.
- In the left navigation menu, click App Registrations. Then click on New Registration.
- Enter a name for the Anodot application (we recommend using Anodot-app) and then click on Register. Please save the application name to one side - you will need to insert it later when integrating with Anodot.
- Navigate to App Registrations and open the app you just created.
- Copy the following two values and save them to one side - you will need to insert them later when integrating with Anodot:
- Application (client) ID
- Directory (tenant) ID - Navigate to Certificates & Secrets and then click on New Client Secret.
- When creating the new client secret, select the Expires = 730 days option.
- Navigate to Certificates & Secrets and copy the Value of the client secret you just created and save it to one side - you will need to insert it later when integrating with Anodot.
Make sure that you have saved the following four values which you will need to enter in Anodot later: Application (client) ID, Application name, Directory (tenant) ID, and Client Secret Value - Navigate to the Azure home page and click Subscriptions.
- Navigate to Access Control (IAM) and then click Add > Add role assignment.
- In the Add role assignment screen, search for the Monitoring Reader role and add it.
- Navigate on Members, click on Select Members, search for the application name you created in step #4, and click on Next.
- Perform steps #11 + #12 again and add the Storage Blob Data Reader role.
- Navigate to the Storage Account page, and click Create.
- Create the Storage account as follows:
- Subscription: the subscription to which the storage account will be related to.
- Resource group: the resource group to which the storage account will be related to.
- Storage account name: the name for the storage account (save this name to one side - you will need to insert it when integrating with Anodot).
- Region: the region to which the storage account will be related to. - Navigate to the Containers page, and click on Container in order to create a new one.
Note: If you already have a container that can host the new blob, you can skip this step once you verify that the container has the roles from steps 12 + 13. - When creating the Container set the public access to Blob (Anonymous read access for blob only), and then click Create. In addition, save the Container name - you will need to insert it when integrating with Anodot.
- Navigate to Cost Management + Billing, click on Export, and then Add.
Note: If your storage account is protected by a firewall, you can create an export using a SAS key. Contact our support for more details and guidance. - Create a new export and choose the following values, and click on Create.
Note: It is important to remember whether you enabled file partitioning and Directory value because you will need to enter these details during the onboarding process at Anodot. - Navigate to the Exports page, mark the export you just created, and click Run now.
note: under the "scope" button choose the scope of the billing export data
Make sure that from step 9 to step 17 you saved two values which you will need to enter in Anodot later: Account Storage and Container name
Part 2: Connect your Azure account to the Anodot app
- Login to Anodot Cloud Cost.
- Click on your user email and navigate to the Account page.
- From the account menu, navigate to the Cloud Account page and click on the Microsoft Azure icon.
- Read the first page and click Let's Start.
- Select MCA, and then click Next.
- Enter the following values you saved after performing step 9, and click Test.
Note: In case you are a reseller, select the "Reseller (CSP)" checkbox in order to support the CSP billing export format. - Enter a display name for your account. Enter the storage account name, the container name, and the directory path - from steps 16, 18, and 20 respectively. Then, click on Save
Note:
- Currency Type - The default currency is USD. In case the invoice currency is not USD please select the relevant currency. Please note that the currency can't be updated again after the onboarding
- Shared Container - Applicable when multiple exports have been configured on the same container (either using different profiles, scopes, or export configurations). You can’t use file partitioning if you select this option.
- File Partitioning- While creating the export (step #20) you can enable Exports to chunk your file into multiple smaller file partitions. If you enabled this option in Azure you need to select it as well in this step of the onboarding
- Directory field - The path that you defined for the export file to go to in Azure (as defined in step #20) so that we will know from where to extract the export
After completing this step, within 24 hours you will be able to see your data in Anodot.
Part 3: Create an application in Anodot
The following steps will allow Anodot to receive data at the resource level and provide you with recommendations:
- Login to Anodot Cloud Cost.
- Click on your user email and navigate to the Account page.
- From the account menu, navigate to the App Registration page and click on REGISTER A NEW APPLICATION.
. - Enter all the values you entered while connecting the account in Part 2, and click Save.
Upon completing these steps, the account will run (automatically every day), the application will be connected (you will see a green circle under the status), and you will start seeing recommendations.