Example Azure Subscription and Resource Groups discovery scenarios - Adaptive Applications - BlueCat Gateway - 22.2.2

Cloud Discovery & Visibility Administration Guide
Locale
English
Product name
BlueCat Gateway
Version
22.2.2

In addition to general discovery, you can perform discovery at the Azure subscription level. When doing so, there are three general scenarios:

  • Discovery of a specific subscription with a specific resource group.
  • Discovery of a specific subscription with all resource groups.
  • Discovery of all subscriptions with all resource groups.
During discovery, Cloud Discovery & Visibility (CDV) imports Azure resource data differently depending on how you configure discovery settings and the layout of the networks you're working with. These differences in behavior can be complex. The examples below describe the impact of different configuration settings under different circumstances.
Note: Within Cloud Discovery & Visibility (CDV), each resource group is a configuration with a corresponding discovery and visibility job.
The following examples assume two subscriptions in the Azure infrastructure:
  • Subscription eng-cloud-sub-1 contains two resource groups: rg-1 and rg-2.
  • Subscription eng-cloud-sub2 contains two resource groups: rg-3 and rg-4

Discovery of a specific subscription with a specific resource group

In this scenario, there are two subscriptions in the Azure infrastructure:
  • Subscription eng-cloud-sub-1 contains two resource groups: rg-1 and rg-2.
  • Subscription eng-cloud-sub2 contains two resource groups: rg-3 and rg-4

Subscription eng-cloud-sub1 and resource group rg-1 are specified in the Azure Credentials page.

BlueCat Configuration Create Separate Configurations for Resource Groups Behavior
Empty Checked

CDV imports Azure resources into Address Manager with the configuration name rg-1.
custom-b Checked CDV imports Azure resources into Address Manager with the configuration name custom-b/rg-1.
Empty Unchecked CDV imports Azure resources into Address Manager with the configuration name rg-1.
custom-d Unchecked CDV imports Azure resources into Address Manager with the configuration name custom-d.

Discovery of a specific subscription with all resource groups

In this scenario, there are two subscriptions in the Azure infrastructure:
  • Subscription eng-cloud-sub-1 contains two resource groups: rg-1 and rg-2.
  • Subscription eng-cloud-sub2 contains two resource groups: rg-3 and rg-4
Subscription eng-cloud-sub2 and all resource groups are specified in the Azure Credentials page.
BlueCat Configuration Create Separate Configurations for Resource Groups Override Configuration Behavior
Empty Checked n/a

CDV imports Azure resources into Address Manager with the two configurations named rg-3 and rg-4.
custom-b Checked n/a CDV imports Azure resources into Address Manager with two configurations named custom-b/rg-3 and custom-b/rg-4.
Empty Unchecked n/a CDV imports Azure resources into Address Manager with two configurations named rg-3 and rg-4.
custom-2d Unchecked Checked

CDV imports Azure resources into Address Manager with a single configuration name, custom-2d. Note that this can result in unexpected errors and data loss during discovery and visibility.

For example, say that:

  • Resource group rg-3 has a virtual network of 10.2.0.0/24 with subnet 10.2.0.0/24.
  • Resource group rg-4 has a virtual network of 10.2.0.0/24 with subnet 10.2.0.0/24 and virtual machine vm-2 is linked to the subnet.

During discovery and visibility, only the network and subnet from rg-3 will be imported into Address Manager. The 10.2.0.0/24 network and subnet from rg-4 will not be imported, except for virtual machine vm-2 from rg-4 (which will be linked to the 10.2.0.0/24 subnet of rg-3).

If you later delete the 10.2.0.0/24 virtual network of rg-3, CDV will process the deletion of the 10.2.0.0/24 IPv4 Block in Address Manager. After that, virtual machine vm-2 will no longer be linked to a network.
custom-2e Unchecked Unchecked CDV imports Azure resources into Address Manager with a single configuration name, custom-2e. However, since the Override Configuration option is unchecked, an error will occur when attempting to import resource group rg-4 into Address Manager, and only resource group rg-3 will be imported.

Discovery of all subscriptions with all resource groups

In this scenario, there are two subscriptions in the Azure infrastructure:
  • Subscription eng-cloud-sub-1 contains two resource groups: rg-1 and rg-2.
  • Subscription eng-cloud-sub2 contains two resource groups: rg-3 and rg-4
All subscriptions and all resource groups are specified in the Azure Credentials page.
BlueCat Configuration Create Separate Configurations for Resource Groups Override Configuration Behavior
Empty Checked n/a

CDV imports Azure resources into Address Manager with the four configurations named rg-1, rg-2, rg-3, and rg-4
custom-b Checked n/a

CDV imports Azure resources into Address Manager with four configurations named custom-b/rg-1, custom-b/rg-2, custom-b/rg-3, and custom-b/rg-4.
Empty Unchecked n/a

CDV imports Azure resources into Address Manager with four configurations named rg-1, rg-2, rg-3, and rg-4.
custom-3d Unchecked Checked

CDV imports Azure resources into Address Manager with a single configuration name, custom-3d. Note that this can result in unexpected errors and data loss during discovery and visibility.

For example, say that:

  • Resource group rg-3 has a virtual network of 10.2.0.0/24 with subnet 10.2.0.0/24.
  • Resource group rg-4 has a virtual network of 10.2.0.0/24 with subnet 10.2.0.0/24 and virtual machine vm-2 is linked to the subnet.

During discovery and visibility, only the network and subnet from rg-3 will be imported into Address Manager. The 10.2.0.0/24 network and subnet from rg-4 will not be imported, except for virtual machine vm-2 from rg-4 (which will be linked to the 10.2.0.0/24 subnet of rg-3).

If you later delete the 10.2.0.0/24 virtual network of rg-3, CDV will process the deletion of the 10.2.0.0/24 IPv4 Block in Address Manager. After that, virtual machine vm-2 will no longer be linked to a network.
custom-3e Unchecked Unchecked CDV imports Azure resources into Address Manager with a single configuration name, custom-3e. However, since the Override Configuration option is unchecked, an error will occur when attempting to import resource groups rg-2, rg-3, and rg-4 into Address Manager, and only resource group rg-1 will be imported.