Azure Virtual Machines

Rumble Enterprise integrates with Microsoft Azure to deliver greater visibility into your cloud assets. This integration imports data through the Azure Virtual Machines API to enrich your asset inventory. Syncing with Azure allows you to view information about your device’s OS profile, storage profile, and more.

This integration imports all Azure virtual machines that are in a running state. It sets the Azure-specific attributes and updates asset-level attributes including the virtual machine type, hardware platform, hostname, and MAC address. Rumble is able to merge existing assets with Azure data when the MAC address is the same. Azure devices can also be manually merged into Rumble assets using the Merge button on the Asset Inventory screen.

Getting Started

To set up the Azure integration, you’ll need to:

  1. Configure Azure to allow API access through Rumble.
  2. Add an Azure credential to Rumble.
  3. Activate the Azure VM connection to sync your data with Rumble.

Requirements

Before you can set up the Azure VM integration:

  • Verify that you have Rumble Enterprise.
  • Make sure you have access to the Microsoft Azure portal.

Step 1: Configure Azure to allow API access through Rumble.

  1. Log into the Microsoft Azure portal.
  2. Go to Azure Active Directory > App registrations and click on New registration.
    • Provide a name.
    • Select the supported account types.
    • Optionally add a redirect URI.
  3. Click register to register the application.
  4. Once the application is created, you should see the Overview dashboard. Save the following information:
    • Application (client) ID
    • Directory (tenant) ID
  5. Give the client access to the subscriptions you want to sync. From the subscription details page, go to Access Control (IAM) and select Add > Add role assignment. Enter the following:
    • Role: Reader
    • Assign access to: User, group, or service principal
    • Under Select, search for the name of the application you created. Click on your application to add it to the Selected members list below.
  6. Click Save to save the role assignment.
  7. Navigate to Azure Active Directory > App registrations and select the application you created.
  8. Go to Certificates & secrets and click on New client secret.
    • Enter a description.
    • Select the expiration.
  9. Click Add to create the client secret. Save the following information:
    • Client secret value

Step 2: Add the Azure credential to Rumble.

Add an Azure Client Secret credential to Rumble

This type of credential can be used to sync all VMs in a single directory (across multiple subscriptions).

  1. Go to the Credentials page in Rumble and click Add Credential.
  2. Provide a name for the credential, like Azure Client Secret.
  3. Choose Azure Client Secret from the list of credential types.
  4. Provide the following information:
    • Azure application (client) ID - The unique ID for the registered application. This can be found in the Azure portal if you go to Azure Active Directory > App registrations and select the application.
    • Azure client secret - To generate a client secret, go to Azure Active Directory > App registrations, select your application, go to Certificates & secrets and click on New client secret.
    • Azure directory (tenant) ID - The unique ID for the tenant. This can be found in the Azure portal if you go to Azure Active Directory > App registrations and select the application.
    • Select the Access all subscriptions in this directory (tenant) option to sync all VMs in your directory. Otherwise, specify the Azure subscription ID - The unique ID for the subscription that you want to sync. This can be found in the Azure portal if you go to Subscriptions and select the subscription.
  5. If you want other organizations to be able to use this credential, select the Make this a global credential option. Otherwise, you can configure access on a per organization basis.
  6. Save the credential. You’re now ready to set up and activate the connection to bring in data from Azure.

Add an Azure Username & Password credential to Rumble

This type of credential can be used to sync all VMs across directories. Alternatively, you can add one Azure Client Secret credential for each Azure directory you want to sync.

  1. Go to the Credentials page in Rumble and click Add Credential.
  2. Provide a name for the credential, like Azure User/Pass.
  3. Choose Azure Username & Password from the list of credential types.
  4. Provide the following information:
    • Azure application (client) ID - The unique ID for the registered application. This can be found in the Azure portal if you go to Azure Active Directory > App registrations and select the application.
    • Azure directory (tenant) ID - The unique ID for the tenant. This can be found in the Azure portal if you go to Azure Active Directory > App registrations and select the application.
    • Azure username - The username for your Azure cloud account. This cannot be a federated user account.
    • Azure password - The password for your Azure cloud account.
  5. If you want other organizations to be able to use this credential, select the Make this a global credential option. Otherwise, you can configure access on a per organization basis.
  6. Save the credential. You’re now ready to set up and activate the connection to bring in data from Azure.

Step 3: Set up and activate the Azure VM connection to sync data

After you add your Azure credential, you’ll need to set up a connection to sync your data from Azure. A connection requires you to set a schedule and choose a site. The schedule determines when the sync occurs, and the site determines where the data is organized.

  1. Activate a connection to Azure. You can access all available third-party connections from your inventory or tasks page.
  2. Choose the credential you added earlier. If you don’t see the credential listed, make sure the credential has access to the organization you are currently in.
  3. Enter a name for the task, like Azure sync.
  4. Schedule the sync. A sync can be set to run on a recurring schedule or run once. The schedule will start on the date and time you have set.
  5. Under Task configuration, choose the site you want to add your assets to. All newly discovered assets will be stored in this site.
  6. Activate the connection when you are done. The sync will run on the defined schedule. You can always check the Scheduled tasks to see when the next sync will occur.

Step 4: View Azure assets

After a successful sync, you can go to your inventory to view your Azure assets. These assets will have an Azure icon listed in the Source column.

To view all your Azure assets, run the following query:

Click into each asset to see its individual attributes. Rumble will show you the attributes returned by the Azure VM API.

Azure attributes

Rumble will enrich your assets with the following attributes, if the information is available:

availabilityZone
hardwareProfile.vmSize	
id
ipv4
ipv6
keyNames
launchTimeTS
location
macs
name
osProfile.adminUsername	
osProfile.computerName	
privateIP
publicDNS
publicIP
resourceGroup
state
storageProfile.imageReference.exactVersion	
storageProfile.imageReference.offer	
storageProfile.imageReference.publisher	
storageProfile.imageReference.sku	
storageProfile.imageReference.version	
storageProfile.osDisk.caching	
storageProfile.osDisk.createOption	
storageProfile.osDisk.diskSizeGB	
storageProfile.osDisk.managedDisk.id	
storageProfile.osDisk.managedDisk.storageAccountType	
storageProfile.osDisk.name	
storageProfile.osDisk.osType	
subnetID
tags
type
vmID