You must gather some information and perform some configuration in order to create a Microsoft Azure endpoint in vRealize Automation.


  1. Locate and record your Microsoft Azure subscritption and tenant IDs.
    • Subscription ID - Click the Subscriptions icon on the left toolbar in your Azure portal to view the subscription ID.
    • Tenant ID - Click the Help icon and select Show Diagnostics in your Azure portal. Search for tenant and record the ID when you have located it.
  2. You can create a new storage account and a resource group to get started. Altenatively, you can create these in blueprints later.
    • Storage Account - Use the following procedure to configure an account.
      1. In your Azure portal, locate the Storage Accounts icon on the sidebar. Make sure the correct subscription is selected and click Add.
      2. Enter the required information for the storage account.
      3. Select whether to use an existing resource group or create a new one. Make note of your resoruce group name, as you will need it later.
  3. Create a virtual network. Alternatively, if you have a suitable existing network, you can select that one.
    If you are creating a network, you must select Use an Existing Resource Group and specify the group that you created in the preceding step. Also, select the same location that you specified previously. Microsoft Azure will not deploy virtual machines or other objects if the location doesn't match between all applicable components that the object will consume.
    1. Locate the Virtual Network icon on the left panel and click it or search for virtual network. Make sure to select the correct subscription and click Add.
    2. Enter a unique name for your new virtual network and record it for later.
    3. Enter the appropriate IP address for your virtual network in the Address space field.
    4. Ensure that the correct subscription is selected and click Add.
    5. Enter the remaining basic configuration information.
    6. You can modify the other options as necessary, but for most configurations, you can leave the defaults.
    7. Click Create.
  4. Set up an Azure Active Directory application so that vRealize Automation can authenticate.
    1. Locate the Active Directory icon on the Azure left menu and click it.
    2. Click App Registrations and select Add.
    3. Type a name for your application that complies with Azure name validation.
    4. Leave Web app/API as the Application Type.
    5. The Sign-on URL can be anything that is appropriate for your usage.
    6. Click Create.
  5. Create a secret key to authenticate the application.
    1. Click the name of your application in Azure.
      Make note of your Application ID for later use.
    2. Click All Settings in the next pane and select Keys from the settings list.
    3. Enter a description for the new key and choose a duration.
    4. Click Save and make sure to copy the key value as you will be unable to retrieve it later.
    5. On the left menu, select API Permissions for the application and click Add to create a new permission.
    6. Click Select an API and choose the Windows Azure Service Management API.
    7. Click Select.
    8. Click Select Permission on the left menu in Azure and then select the Access Azure Servuice Management as organization users (preview).
    9. Click Select and then click Done.

  6. Authorize your Active Directory application to connect to your Azure subscription so that you can deploy and manage virtual machines.
    1. Click back on the Subscriptions icon, and select your new subscription.
      You may need to click on the text of the name to get the panel to slide over.
    2. Select the Access control (IAM) option to see the permissions to your subscription.
    3. Click Add at the top.
    4. Click Select a Role and choose Contributor from the list.
    5. Click the Add a Users option and search for the name of your new application. When you locate it in the list, select the box and click Select and then OK.
      Repeat this step so that your new application has Owner, Contributor, and Reader roles.

What to do next

You must install the Microsoft Azure command line interface tools. These tools are freely available for both Windows and Mac operating systems. See the Microsoft documentation for more information about downloading and installing these tools.

When you have the command line interface installed, you must suthenticte to your new subscription.

  1. Open a terminal window and type your Microsoft Azure login. You will receive a URL and a shortcode that will allow you to authenticate.
  2. In a browser, enter the code that you received from the application on your device.
  3. Enter your Auth Code and click Continue.
  4. Select your Azure account and login.

    If you have multiple subscriptions, ensure that the correct one is selected using the azure account set <subscription-name> command.

  5. Before you proceed, you must register the Microsoft.Compute provider to your new Azure subscription using the azure provider register microsoft.compute command.

    If the command times out and generates and error the first time your run it, run it again.

When you have completed configuration, you can use the azure vm image list command to retrieve available virtual machine image names. You can choose the desired image and record the URN provided for it and later use it in bluerpints.