We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

Attention

Barracuda CloudGen Firewall version 8.0 is a cloud-only version. It is currently not available for on-premises deployments and can only be deployed in Microsoft Azure, Amazon Web Services, or Google Cloud Platform public clouds.

How to Create a Service Principal for Azure Virtual WAN

  • Last updated on

For the firewall to authenticate to the Azure Virtual WAN APIs that enable automated connectivity, a registered app must be created. The registered app requires the following information:

  • Tenant ID
  • Subscription ID
  • User ID / Application ID
  • Key

Step 1. Get the Tenant ID

  1. Log into the Azure portal: https://portal.azure.com
  2. In the left menu, click All services and search for Azure Active Directory.
  3. Click Azure Active Directory.
  4. In the left menu of the Azure Active Directory blade, click Properties.
  5. Copy the Directory ID. This is the tenant ID of your service principal.
    vwan_sp_00.png

Step 2. Create New App Registration

  1. Log into the Azure portal: https://portal.azure.com
  2. In the left menu, click All services and search for Azure Active Directory.
  3. Click Azure Active Directory.
  4. In the left menu of the Azure Active Directory blade, click App registration s.
    vwan_sp_01.png
  5. Click New application registration. The Create blade opens.
  6. In the Create blade, enter:
    • Name – Enter a name for the application registration
    • Application type – Select Web app/APdpcI.
    • Redirect URI – Enter a random, unique URI. E.g., https://localhost:432
    vwan_sp_02.png
  7. Click Create.

Copy the Application ID: This is the user ID for your service principal information.

vwan_sp_03.png

Step 3. Create the Service Principal Key

For the app registration, create a service principal key to authenticate.

  1. Log into the Azure portal: https://portal.azure.com
  2. In the left menu, click All services and search for Azure Active Directory.
  3. Click Azure Active Directory.
  4. In the left menu of the Azure Active Directory blade, click App registration s.
  5. Click on the registered app created in Step 2. The Registered app blade opens.
  6. Click Settings. The Settings blade opens.
    vwan_sp_04.png
  7. In the left menu of the Settings blade, click Keys.
  8. In the Password section, enter:
    • Key Description – Enter a name for the service principal key.
    • Expires – Select Never expires.
  9. Click Save.

The key is now displayed in the Value column. Note that you must copy it before reloading page because it is no longer displayed afterwards.

vwan_sp_05.png

Step 4. Assign the Appropriate Role to the Registered App

  1. Log into the Azure portal: https://portal.azure.com    
  2. In the left menu, click Subscriptions.  
  3. Select the required entry with the Subscription ID from the list of subscriptions.  
    service_principal_role_assignement_select_subscription.png
  4. Click Access control (IAM)
  5. Click +Add and select Add role assignment from the list.
      service_principal_role_assignement_go_to_access_control_and_add_role_assignement.png
  6. For Role, select Storage Blob Data Owner from the list.
  7. For Assign access to, select the service principal.
  8. Select the registered app created in step 2 (doc-vwan-sp).
    service_principal_role_assignement_assign_role_to_service_principal_and_save.png
  9. Click Save to save your configuration.

Step 5. Get the Subscription ID

  1. Log into the Azure portal: https://portal.azure.com    
  2. In the left menu, click Subscriptions.  
  3. Copy the Subscription ID in the Subscription ID column.

vwan_sp_06.png

Next Steps

You can now configure automated connectivity for Azure Virtual WAN.

For more information, see How to Configure Automatic Connectivity to Azure Virtual WAN.

Last updated on