Prerequisites to add Azure Account
Step 1 : Generate Application ID
Sign in to your Azure Account through the Azure Portal
Note: Make sure the user account you use has sufficient permission to register an application and assign a role to it.
Search and locate the Microsoft Entra ID (formerly Azure Active Directory). On the Microsoft Entra ID page, select App registrations under Manage on the left pane and click on New registration. Then ‘Register an application’ page will appear and enter the following details to register your application.
Name
Enter a display name for the application.
Supported account types
Choose the option “Accounts in this organizational directory only”
Finally, click on the Register button. The Microsoft Entra ID (formerly Azure Active Directory) assigns a unique Application (client) ID, which appears on the page to which you are redirected.
Step 2: Generate Application Password
Select Certificates & secrets under Manage on the left pane.
Click on New client secret which opens a separate section: Add a client secret. On this page, choose 24 months from the Expires option and click Add. This will generate and display the application password (under the ‘Value’ column).
Note: Make sure you copy the application password (Value) as the portal will display it only once. (You can use the copy to clipboard icon to copy the password). Once the generated application password has expired, create a new client secret and update it on the BDRSuite. If the expired password is not updated, backups will fail.
Step 3: Create Role
- On the Home page, under the Azure Services section, select ‘Subscriptions’ (or) search for and select ‘Subscriptions’ from the Search box at the top.
- From the list of Subscriptions, click on the subscription that you plan to use in BDRSuite to configure backup from.
- On the left pane of the selected Subscription page, click Access control (IAM) and then click Add -> Add custom role.
- On the Basics Tab, Enter a Custom Role name ( bdrsuite-azure-backup-restore-role) and for Baseline Permissions, select the option: start from scratch.
- ‘Permissons’ Tab – Click next and move to Assignable Scopes tab.
- On the Assignable Scopes Tab: Click on “+Add Assignable Scopes” option to add any other subscriptions you have access to. On the Add assignable scopes dialog, select a subscription to add as an assignable scope.
- On the JSON Tab, click “Edit”, Under “permissions”, copy and paste the entire content from the following JSON policy document and finally “Save” it.
- On the Review + Create tab, review the role assignment settings and click the Review + Create button.
- On the Add custom role page add the roles.
Note: Please make sure to select any other subscriptions associated with this account if you intend to use them for backup and recovery. Otherwise, you will need to perform the steps separately for each subscription later.
Step 4: Add Role Assignment
- On the Home page, under the Azure Services section, select ‘Subscriptions’ (or) search for and select ‘Subscriptions’ from the Search box at the top.
- From the list of subscriptions, click on the subscription that you plan to use in BDRSuite.
- On the left pane of the selected subscription page, click Access control (IAM) and then click Add -> Add role assignment
- On the Add the role assignment page add the following roles:
- Under Role tab, select the role created above (bdrsuite-azure-backup-restore-role) and click next
- On the Members Tab:
- For the field: ‘Assign access to’, select the option: User, group, or service principal.
- For the field: Members, click ‘Select Members’ which opens a dialog box. Search and select the application that you have created (in step 1) and click the ‘Select’ button. Then, click the Next button.
- On the Review + assign tab, review the role assignment settings and click the Review + assign button.
Step 5: Add Azure Account on the BDRSuite
- On the BDRSuite, navigate to the Cloud Workloads ->Data Source-> Azure Backup -> Azure Accounts page.
- Click on the ‘Add Azure Account’ button which opens a dialog box. Then, enter the following details and click ‘Save’.
- Tenant ID – On the Azure Portal, navigate to the Microsoft Entra ID (formerly Azure Active Directory) page where you can find the ‘Tenant ID’ under the Basic information section.
- Application ID – On the Azure Portal, navigate to the Microsoft Entra ID (formerly Azure Active Directory) and select ‘App registrations’ from the left pane. Click on the application that you have created (in step 1) and you can find the ‘Application (client) ID’ under Essentials section.
- Application Password – Provide the Application Password (Value) that you copied after creating the client secret.
Adding Azure
To add Azure Accounts for Azure VM Backup and Recovery on the BDRSuite – Tenant ID, Application ID & Application Password details are required. Click here to learn about prerequisites to add Azure.
Account Name
Enter a name to identify the Azure account you are adding to the BDRSuite Backup Server.
Tenant ID
On the Azure Portal, navigate to the Entra ID (Formerly known as Azure Active Directory) page where you can find the Tenant ID under the basic information section. Copy the ID and paste it here.
Application ID
On the Azure Portal, navigate to the Entra ID (Formerly known as Azure Active Directory) page and select ‘App Registration’ from the left pane. Click on the application created for the BDRSuite from the list and you can find the Application(Client) ID under the Essentials Section. You can copy the ID and paste it here.
Application Password
Enter the Application Password that you copied after creating client secret ID.
Click Save after entering all the details and you will have your Azure Account added to the BDRSuite Backup Server.
Related Articles
Adding AWS Account for Backup
Prerequisites to Add AWS Accounts It is necessary to Create & Attach a Policy to the User and set up Access Key ID & Secret access key as a prerequisite action to further proceed with adding the AWS Account. 1. Create & Attach Policy to User Create a ...
Azure VM Backup and Recovery
Overview BDRSuite's Azure Backup solution provides comprehensive protection for your Azure Virtual Machines and other critical workloads, ensuring secure backups and seamless recovery in case of accidental deletion, data corruption, or system ...
Quick Start Guide for Microsoft Azure Backup & Recovery
About Microsoft Azure Backup BDRSuite provides a robust solution for protecting Microsoft Azure resources, including Azure VMs, Azure Files, and SQL databases. It supports automated incremental backups, granular recovery, and secure storage across ...
Adding Microsoft 365 Organization for Backup
In order to set up the Data Sources environment, you need to add your Microsoft 365 Organization, which can be done by navigating to the Data Sources -> Add Microsoft 365 Organization. Add Microsoft 365 Organization To add the Microsoft 365 domain, ...
Adding Mac for Backup
Prerequisites to add Mac Before you add a Mac Endpoint to the BDRSuite Server/Client, check the following prerequisites. 1.User Account with Root Privileges: Make sure the user account you specify to add the Mac has root privileges. If you add a ...