Azure Cloud discovery

AP_Akash_07
Tera Contributor

Does anybody have a genuine Diagram or pictorial representation of how ServiceNow Azure Cloud Discovery works ,or how is the discovery done between both ? I want to have a check like how the SPN ,mid servers etc play their role in the process and populate the data into the CMDB 

4 REPLIES 4

Abbas_5
Tera Sage
Tera Sage

Hello @AP_Akash_07,

 

ServiceNow Azure Cloud Discovery uses MID Servers and Service Principals (SPNs) to populate the CMDB with information about your Azure environmentMID Servers act as a bridge, executing discovery probes and sending data back to the ServiceNow instance. SPNs are used to authenticate with Azure APIs, allowing ServiceNow to access resources and their details. 
Here's a more detailed breakdown:
1. MID Server Role:
  • Bridge:
    MID Servers are Java applications installed on servers within your network or cloud environment. They act as a communication link between ServiceNow and external systems, like Azure. 
     
  • Execution:
    MID Servers execute discovery probes, which are scripts that gather data from Azure resources. 
     
  • Data Transfer:
    They send the collected data back to the ServiceNow instance for processing and storage in the CMDB. 
     
2. Service Principal (SPN) Role:
  • Authentication:
    SPNs are used to authenticate with Azure Active Directory, granting ServiceNow the necessary permissions to access Azure resources.
  • Access Control:
    By using SPNs, ServiceNow can securely access specific Azure resources and retrieve information about them.
  • Credentials:
    SPNs consist of a client ID, client secret, and tenant ID, which are used to establish the connection with Azure. 
     
3. Discovery Process:
  • Initiation:
    Discovery is initiated through a scheduled job or on-demand scans. 
     
  • MID Server Selection:
    ServiceNow selects an appropriate MID Server based on the configuration and network topology. 
     
  • Probe Execution:
    The selected MID Server executes probes against Azure, using the SPN for authentication. 
     
  • Data Collection:
    Probes gather information about various Azure resources, such as virtual machines, storage accounts, and databases. 
     
  • CMDB Population:
    The collected data is then sent to the ServiceNow instance, where it's processed and stored in the CMDB, creating or updating Configuration Items (CIs). 
     
4. Diagram:
A simple diagram would show:
+---------------------+     +---------------------+     +---------------------+| ServiceNow Instance | <-- |   MID Server        | <-- | Azure Environment   |+---------------------+     +---------------------+     +---------------------+      |                     |                       |      | (Discovery Request) | (Probe Execution)     | (Resource Data)      |                     |                       |      +---------------------+     +---------------------+     +---------------------+                                  |                       |                                  | (Authentication)      |                                  | SPN (Client ID,       |                                  | Secret, Tenant ID)     |                                  +---------------------+
In this diagram:
  • The ServiceNow instance sends a discovery request.
  • A MID Server is selected and executes probes in the Azure environment.
  • The MID Server uses the SPN to authenticate with Azure APIs.
  • The MID Server collects data from various Azure resources.
  • The collected data is sent back to the ServiceNow instance to populate the CMDB.
This process ensures that ServiceNow has an accurate and up-to-date view of the Azure environment, which is crucial for IT Operations Management and other ServiceNow applications. 
 
If this is helpful, please click the thumbs up button and accept this solution as the correct answer, referring to it in the future; it will be helpful to others.
 
Thanks & Regards,
Abbas Shaik

AP_Akash_07
Tera Contributor

Hi @Abbas_5 ,Thanks for your Reply ,that helps .Do you have a reference to any official Servicenow Doc or Architecture Diagram of the same ? Thanks 

Hello @AP_Akash_07,

 

Please check this below link:

https://www.servicenow.com/docs/bundle/yokohama-it-operations-management/page/product/discovery/conc...

 

If this is helpful, please click the thumbs up button and accept this solution as the correct answer, referring to it in the future; it will be helpful to others.
 
Thanks & Regards,
Abbas Shaik