Azure Private Link Private Endpoint pattern-based discovery
Summarize
Summary of Azure Private Link Private Endpoint pattern-based discovery
This pattern-based discovery for Azure Private Link Private Endpoints enables ServiceNow customers to identify and map Azure services within their cloud environments. It leverages the Discovery and Service Mapping Patterns application, which requires periodic updates to detect the latest Azure resources accurately.
Show less
Key Features
- Pattern Activation: The Azure Private Link Private Endpoint pattern is disabled by default. Starting with Visibility Content version 6.28.0, activating or deactivating a pattern no longer counts as a customization and patterns reset to the latest version during upgrades while retaining their activation state.
- Azure GovCloud Support: Discovery supports Azure GovCloud (US) accounts by configuring the Discovery schedule with a datacenter URL during Azure service account setup.
- Data Storage: Discovery populates data in both CMDB and non-CMDB tables:
- Non-CMDB tables: Data from the “Azure - Private Link Private Endpoint - Extended Inventory (LP)” pattern can be reviewed under Configuration > Azure.
- CMDB tables: Cloud Resource records related to Private Endpoints are created in the CMDB with key attributes such as install status, location, name, object ID, operational status, and resource type set to microsoft.network/privateendpoints.
- CI Relationships: The pattern automatically establishes relationships linking Private Endpoints to Resource Groups, Azure Datacenters, and Cloud Resources, facilitating comprehensive service mapping.
- Tag Discovery: Tags associated with Azure Private Link resources are collected and stored in the Key Value table, helping enrich CMDB data with metadata.
Practical Application
ServiceNow customers can use this pattern to enhance visibility into their Azure Private Link Private Endpoints, ensuring accurate representation in the CMDB. This supports operational efficiency, compliance, and improved cloud service management by providing detailed resource attributes, their deployment status, and interdependencies within Azure environments.
To utilize this discovery effectively, verify Microsoft Azure discovery prerequisites, enable the pattern in the Discovery and Service Mapping Patterns application, and configure discovery schedules appropriately for environments such as Azure GovCloud.
Discovery and Service Mapping Patterns finds Azure services on your cloud environment. Discovering some of these resources may require updating to the latest version of the Discovery and Service Mapping Patterns application from the ServiceNow Store.
Pattern-based discovery and mapping requirements
- Verify the Microsoft Azure discovery prerequisites
- For more information, see the prerequisites section in Microsoft Azure Cloud components discovery using patterns.
- Enable the relevant pattern
- The pattern for this service is disabled by default. Starting with Visibility Content version 6.28.0, activating or deactivating a pattern won't be considered a customization, and it will continue to receive updates. Patterns that were previously activated or deactivated will reset to the latest predefined version after upgrading while retaining the last active field value. For more information on enabling patterns, see Activate a disabled pattern.
- Configure the Discovery schedule to support GovCloud
- Discovering Azure GovCloud (US) accounts requires using a datacenter URL when setting up an Azure service account. For more information, see Set up Azure service accounts.
Discovery and Service Mapping Patterns application populates data in both CMDB and non-CMDB tables.
Data stored in non-CMDB tables
Discovery and Service Mapping Patterns application populates data in the non-CMDB table when running the Azure - Private Link Private Endpoint - Extended Inventory(LP) pattern.
You can review the non-CMDB Azure tables by navigating to . You can also search the navigation filter for the specific pattern name.
| Field | Description |
|---|---|
| Kind [kind] | The specific category or variant of the resource type. |
| Location [location] | The geographic region where the resource is deployed. |
| Object Id [object_id] | The unique identifier for the resource. |
| Provisioning State [provisioning_state] | The current provisioning or deployment state of the resource. |
| Resource Group [resource_group] | Name of the resource group. |
| Subscription ID [subscription_id] | The subscription ID. |
| Tenant ID [tenant_id] | The identifier for the tenant associated with the resource. |
| Configuration Item [configuration_item] | References the Cloud Resource [cmdb_ci_cmp_resource] table. |
Data stored in CMDB tables
Discovery and Service Mapping Patterns application populates data in the CMDB when running the Azure - Private Link Private Endpoint - Extended Inventory(LP) pattern.
| Field | Description |
|---|---|
| Install Status [install_status] | Install status of the resource. Default value is Installed. |
| Location [location] | The geographic region where the resource is deployed. |
| Name [name] | The name of the resource. |
| Object ID [object_id] | The unique identifier for the resource. |
| Operational status [operational_status] | Operational status of the resource. Default value is Operational. |
| Resource type [resource_type] | Type of resource. The value is set to microsoft.network/privateendpoints. |
CI relationships
The pattern creates these relationships to support discovery.
| CI | Relationship | CI |
|---|---|---|
| Resource Group [cmdb_ci_resource_group] | Contains::Contained by | Cloud Resource [cmdb_ci_cmp_resource] |
| Cloud Resource [cmdb_ci_cmp_resource] | Hosted on::Hosts | Azure Datacenter [cmdb_ci_azure_datacenter] |
| Azure Private Link - Private Endpoint [cmdb_azure_private_link_private_endpoint] | References | Cloud Resource [cmdb_ci_cmp_resource] |
Azure tag discovery
| Field | Description |
|---|---|
| Key [key] | Tag name. |
| Value [value] | Tag value. |