Creating a CDP credential
After you create a storage account and container in Azure, you need to create a CDP credential.
Before proceeding with this task, open the Azure shell in the Azure Portal.
- In CDP, select Environments.
- Click the Shared Resources link at the top of the Environments screen.
- Click the Credentials link in the left sub-navigation area.
- Click the Create Credential button.
- Click the Azure tab.
Run the commands listed on the input pane in the Azure shell.
Follow the instructions for the first command.
This command allows you to identify your subscription and tenant ID. The command output is JSON text that lists the different subscriptions to which you have access.
- Find the subscription that was used to create the Storage Account you created and use that information to create the CDP Credential.
For the second command, instead of using the command listed on the screen, use the
az ad sp create-for-rbac --name http://<name> --role "Storage Blob Data Contributor" --scopes /subscriptions/<subscriptionID>/resourceGroups/<resourceGroupName >/providers/Microsoft.Storage/storageAccounts/<storageAccoutName> /blobServices/default/containers/<containerName>The name for the service principal can be any arbitrary name. For convenience sake, we recommend using the storage account name.The instructions listed on the CDP credential screen grant more permissions than is necessary for archiving audit information.
- Follow the instructions for the first command.
- Save the App ID and password from the command output to enter in the Credential creation screen.