This article provides instructions on how to add Azure from Telstra clouds. If you're looking to add a BYO Azure cloud, we have another page for that.
From the cloud services page on Cloud Sight, you can:
- Add new Azure from Telstra clouds – creates a new cloud service in your AWS from Telstra tenancy
- Add existing Azure from Telstra clouds – adds a cloud you've already created in the AWS from Telstra tenancy to Cloud Sight.
You'll need to be logged in as an Admin or Manager at workspace layer or higher to add a cloud.
Adding a new Azure from Telstra cloud
1. From the + Add service dropdown on the top right of the page, under the title Add new service, select Azure.
Please note that you can only add one type of AWS cloud per Cloud Sight tenancy.
e.g. if you add an AWS from Telstra cloud to your tenancy, you may only add more AWS from Telstra type clouds to it. To add BYO AWS clouds to Cloud Sight you'll need to create a separate Cloud Sight tenany.
The first time you add an Azure cloud on Cloud Sight
- You'll be asked to link your Cloud Sight tenancy to an Azure AD tenant.
- You'll need to give us granular delegated admin privileges (GDAP).
You won't be able to continue to step 2 without performing the two above tasks.
2. Set your cloud details.
- Cloud name – this will be the name you’ll use to identify your cloud so use one that’s simple enough to remember.
- Workspace – select a workspace to which you’d like to add this cloud.
- Assign administrators for the subscription – enter up to three (3) email addresses of those who are already administrators on the Azure portal. You can add or change Azure subscription admins via the Azure portal.
3. If you want to harden your cloud, select the 'Centre for Internet Security (CIS) compliance blueprint from the Cloud hardening section. Choose 'No account hardening' if you don't want this deployed.
Blueprints can only be deployed when you're adding a new cloud. Blueprints also cannot be removed or rolled back later. You may change the configuration of your cloud through the service provider portal (e.g. Azure portal) at the risk of no longer remaining compliant with the blueprint. See our article on Compliance for more details.
5. Add a promo codes or Microsoft Partner ID if you have any of those – these fields are optional.
6. Finally, accept the terms and conditions and select Add.
Adding existing clouds
The first time you add an Azure cloud on Cloud Sight you'll be asked to link your Cloud Sight tenancy to an Azure AD tenant. You'll return to wherever you left off, after you finish this process.
1. From the + Add dropdown on the top right of the page, under under the title Add existing service, select Azure.
2. You’ll see a list of your existing clouds eligible for connection to Cloud Sight. Select the services you’d like to add.
|Note: when adding AWS clouds, you may see clouds that can't be selected. These could be AWS accounts without an OrganizationAccountAccessRole. Please try creating an OrganizationAccountAccessRole. If your clouds still can't be selected or you need help with this, please contact us.|
3. Select the workspace to which you’d like to add the clouds you’ve selected.
4. Select Add.