Sign In

Microsoft Azure

Prerequisites for connecting an Azure data source

When connecting your Azure data source to FinOps for Cloud, you'll need to provide the following details from Microsoft Azure:

  • Application ID (client ID)

  • Client Secret

  • Directory (tenant) ID

  • Subscription ID

Additionally, the application must be assigned the Reader role. These are the prerequisites for connecting your Azure data source to FinOps.

The following sections describe how to get these values from Azure. Once you have completed the prerequisites, see Connecting your Azure data source for the next steps.

Generating the application ID (client ID)

The application ID (client ID) must be generated manually in Azure to allow API communication with FinOps.

To generate the application ID (client ID):

  1. In Microsoft Entra ID (formerly Azure Active Directory), navigate to App registrations.

  2. Select New registration.

  3. Provide a name for the application, for example, Optscale.

  4. Select Register.

After the application is successfully registered, the application ID is displayed. Make a note of the value. You'll need to enter it in the Application (client) ID field within FinOps.

After registering the application, you must also explicitly grant it permissions using Role Assignment to work with the current Azure subscription. See Performing role assignment for details.

Generating a client secret

To generate a client secret:

  1. In the Azure portal, navigate to your newly created application. Then, select Certificates & Secrets.

  2. Select New client secret.

  3. Provide a description of the secret and set the expiration date.

  4. Select Add. The secret's value is displayed in the Value column.

  5. Copy this value immediately. You'll need to enter it in the Secret field within FinOps when connecting your Azure subscription.

The secret's value is hidden shortly after its creation. Make sure to copy the value.

Locating your directory (tenant) ID

Directory (tenant) ID is a globally unique identifier (GUID) that is different from your organization's name or domain. You can find this ID in the Microsoft Azure portal.

To locate your Directory ID in the Microsoft Azure portal, navigate to App registrations (for example, OptScale) > Overview > Directory (tenant) ID.

Copy the value. You'll need to enter it in the Directory (tenant) ID field within FinOps when connecting your Azure subscription.

Locating your subscription ID

A subscription ID is a unique string that identifies your subscription.

To find the ID in the Microsoft Azure portal, search for Subscriptions. You'll see a list of all subscriptions associated with your Azure account. The list will include a subscription ID for each subscription.

Performing role assignment

To assign the reader role to the subscription you've provisioned to be linked to FinOps:

  1. In the Azure portal, navigate to Subscriptions.

  2. Select the subscription. You'll be directed to its dashboard.

  3. In the left sidebar, select Access control (IAM) and select the Role assignments tab. Then, select Add > Add role assignment.

  1. In Add role assignment, do the following:

    1. On the Role tab, choose Reader and select Next.

    2. On the Members tab, make sure that User, group, or service principal is selected. Then, select Next.

    3. The third field should contain the name of a registered application from the previous steps, for example, FinOps. Select Next.

    4. On the Review + assign tab, review the role assignment settings, then select Review + assign to assign the role.

Connecting your Azure data source

Once all of the prerequisites are complete, you can connect your Azure data source to FinOps.

To do this:

  1. Navigate to the Data sources page within FinOps. Then, select Azure.

Azure subscription option

  1. Fill in the following fields:

    1. Name - Enter a meaningful name for the data source.

    2. Directory (tenant) ID - Enter the unique identifier of the tenant.

    3. Subscription ID - Enter the ID of the Azure subscription you want to integrate. You can find this ID in Azure.

    4. Application (client) ID - Provide your application ID (client ID).

    5. Secret - Provide your client secret.

  2. Select Connect.

FinOps for Cloud validates the information. When the validation process is completed, the data will be pulled from the source and displayed within FinOps.

PreviousGoogle Cloud PlatformNextEvents

Last updated

Was this helpful?