Set up Azure configuration
In the Azure portal, set up Groundplex nodes as system or user-assigned identities and one more Key Vaults.
Use the Azure Portal to set up:
- Groundplex nodes as managed identities. Managed identities can be system- or user-assigned:
- System-assigned managed identities allow you to configure one resource at a time.
- User-assigned managed identities allow you to configure multiple resources as a group.
- One or more Key Vaults to hold your secrets. Each vault must have an IAM role defined that grants the appropriate access to the Groundplex managed identities.
- A SnapLogic subscription to Secrets Management.
- An Azure account with permission to create an Azure Key Vault and create and assign Key Vault access policies.
- Groundplex nodes running on VMs (virtual machines) in the Azure environment.
- Follow the Microsoft documentation to set up the managed identities for the Groundplex node VMs. You can create new VMs to run Groundplex nodes or associate a managed identity with existing VMs that are running Groundplex nodes.
- If you don't have an Azure Key Vault, follow Microsoft documentation to create one.
-
Verify or create the IAM role that you will assign to the Groundplex nodes:
- Navigate to the Key Vault resource in the Azure portal and select Access Policies (IAM) from the left navigation menu.
- If the Key Vault built-in roles don't meet your specific needs, configure a role to use with the Azure Key Vault. We recommend a role with read-only access.
- Assign this role to the managed identity.