Microsoft Azure integration
The integration is used for Azure CLI, Azure storage and Azure AKS.
Pipeline example
Types of Azure integration
Integrating Buddy with Azure can be performed in two ways:
- By creating a service principal.
- By using the OIDC identity provider.
Service principal
Azure requires automated tools, such as Buddy, to be represented by a service principal to access resources secured by an Azure AD tenant.
To create a service principal in Azure, use the Azure CLI on your local machine.
Alternatively, you can create a service principal using the Cloud Shell, which you can access directly from the Azure Portal.
Follow these steps:
- Install Azure CLI.
- Run
az loginto sign in to your Azure account. - Run
az ad sp create-for-rbac --name {SP_NAME}to create a new app and service principal with the set display name.
This creates a new app that supports a single tenant with the default Contributor role assignment. The details of the app and the service principal are displayed after the command runs successfully:
Service principal details
Copy the details of the new app - appId, password, and tenant. You need them to configure the integration in Buddy.
Make sure to copy the service principal password as you won't be able to retrieve it after you close the terminal window. If you need to access it at a later date, you must reset the service principal credentials and get a new password.
Once created, you can use the principal credentials to configure the integration in Buddy:
- Sign in to your Buddy workspace and open the Integrations tab.
- Click Add a new integration and select Azure Cloud.
- Click Set up a new Azure integration.
- Fill in the integration data: define the integration name and paste the App ID, Tenant ID and Service principal password that you created earlier.
Azure integration configuration
- Click Add a new integration.
OIDC
To integrate with OIDC, jump to our dedicated article on integrating Azure services with Buddy pipelines over OIDC.
Last modified on July 20, 2023