Cloud Platforms Auto-discovery

Contents

  1. Device42 Cloud Platform Auto-discovery
  2. Alibaba Cloud Discovery
  3. Amazon Web Services Auto-discovery
  4. Google Cloud Discovery
  5. Microsoft Azure Auto-discovery
  6. Openstack Auto-discovery
  7. Linode Auto-discovery
  8. Cloud Instance Information

Device42 Cloud Platform Auto-discovery

Device42 supports auto-discovery of cloud instances (virtual devices) on Amazon AWS, Microsoft Azure, Linode, Digital Ocean, Cloudstack, Openstack, Joyent, and Outscale. Native discovery for new cloud platforms is added according to customer needs [and please do let us know!].

Device42 will auto-discover your cloud virtual machines, databases, and storage as devices. You can then work with your cloud devices just like like you would any other device. You can define application components, store passwords, create custom keys, and so on, just as you would for any other physical or virtual device.

Create Cloud AutoDiscovery job

The Discovery menu includes the option for discovery of Cloud instances. The list page shows all of your existing cloud auto-discovery jobs. You’ll typically create one job per account. As with other types of auto-discovery jobs, cloud discovery jobs can be run immediately and/or scheduled. Click the ‘Add Cloud Autodiscovery’ button [top right corner] to create a new job.

Create / View Cloud Autodiscovery Job

Alibaba Cloud Discovery

Create a new Cloud Autodiscovery job from the Discovery, and choose Alibaba Cloud as the “Cloud Type”.

Name your job, and then add your Alibaba credentials, including both Access Key ID and your Access Key Secret. Should you be using a keyfile, enter the KeyFile password in the “password” field along with the key.

Add Alibaba cloud discovery

Amazon Web Services Auto-discovery

Prerequisites – To create an AWS Autodiscovery job, you will need to:

  1. Prepare your AWS Account – The Minimum IAM Policy Permission/Role requirements are:

    • AmazonEc2ReadOnly
    • AmazonElastiCacheReadOnlyAccess
    • AmazonRDSReadOnlyAccess
    • AmazonS3ReadOnlyAccess

  2. Device42 utilizes your AWS Access Key and Secret Key to perform discovery, please have these handy

  3. Choose & Enter a ‘Name’ for the job

  4. Select the Cloud Type (Choose ‘Amazon AWS’ from the dropdown)

    Save Amazon Key ID and Secret

  5. Add your Amazon Secret Key for the account to be discovered. The procedure is the same as for the Account Access Key, but will use a Second, separate entry! Do this by clicking the magnifying glass, and then clicking ‘Add Password’ in the upper right hand corner. Enter your Secret Key in the field labeled “Password:”. The USERNAME FIELD IS NOT USED by cloud discoveriesDevice42 will store the Secret Key encrypted. If desired, set up access permissions for the Secret Key.

  6. Choose one or more Amazon regions to search
    Amazon Web Services

Optionally, you can also:

  • Choose a vendor [note that all vendors are user-defined – Device42 does not ship with a list of vendors].
  • Choose a VRF Group. If one is selected, all discovered IPs will be placed in subnets in that VRF Group. This is useful if you have duplicate IPs in your internal network.
  • Choose a remote collector to run the job [ensure the chosen remote collector can reach the target network]
  • Check “Add tags as custom fields” to add discovered tags to Device42 custom fields.
  • Check “Strip domain name” to have Device42 strip the discovered domain suffix from the device instance name.
  • Choose a category for discovered devices [note categories are user defined]

Next, you should “Save and Continue”. You can then click ‘Run’ to run the job immediately. Or you can save it or save it and have it run on a regular schedule.

Google Cloud Discovery

Device42 can now discover your inventory on the Google Cloud Platform. Simply create a new job, add your credentials, and you’ll be off discovering all of your GCE VMs. Begin by creating a new Google cloud discovery job:
Add Google Cloud Engine Discovery

1) Create a new “Cloud Autodiscovery” job from the Discovery, and choose Google Cloud.

2) Browse to your Google Cloud Engine JSON keyfile. Open it in a text editor and copy the contents:

Copy contents of GCE JSON keyfile

3) Paste the copied JSON in its entirety into the password field. Note that GCE discovery does not utilize the “password” field (*leave it blank*):

Paste Google cloud keyfile JSON into password field

4) Save and run your job! Optionally, create a schedule to run it automatically!

Data discovered on the Google Cloud Platform is similar to what you might be used to on AWS EC2 instances, namely:
– Discovered Google Cloud VMs are added a virtual devices
– Cloud information is added inline in Device42 for each CI

Options for GCE are as follows:

Strip Domain Name: Strip domain name from discovered name (after first period)
Object category for discovered devices: Choose a category to assign to discovered devices
Overwrite existing object categories: Select this option to overwrite any previously assigned categories with current selection

Microsoft Azure Auto-discovery

Microsoft Azure Autodiscovery

Microsoft Azure Discovery is similar to Amazon; you will need to:

  1. Choose & enter a ‘Name’ for the job
  2. Select the Cloud Type (Choose ‘Microsoft Azure’ from the dropdown)
  3. Enter your ‘Subscription ID’

  4. That’s it! Azure will now recognize the Device42 instance as secure client that is authorized to interact with your Azure account.

Device > Virtual Device will now show cloud devices as well. The Vendor shows up as the Device Host for these devices. There is a new filter on the right hand side filter bar.

Optionally, you can also:

  • Choose the vendor [note that all vendors are user-defined – Device42 does not ship with a list of vendors].
  • Choose a VRF Group. If one is selected, all discovered IPs will be placed in subnets in that VRF Group. This is useful if you have duplicate IPs in your internal network.
  • Choose a remote collector to run the job [ensure the chosen remote collector can reach the target network]
  • Check “Add tags as custom fields” to add discovered tags to Device42 custom fields.
  • Check “Strip domain name” to have Device42 strip the discovered domain suffix from the device instance name.
  • Choose a category for discovered devices [note that categories are user defined]

Next, you should “Save and Continue”. Then you can click ‘Run’ to run the job immediately. Or you can save it or save it and have it run on a regular schedule.

Openstack Auto-discovery

  1. When you add an Openstack job, you will be prompted for a User, Password, and Project Name…

    Add Openstack Discovery

Minimum Permission Requirements for OpenStack Discovery are as follows:

  • User / User Group should be attached to the project and have the following permissions described in policy.json:
    • “os_compute_api:os-hypervisors”
    • “os_compute_api:os-extended-server-attributes”

  1. The User and Password are the ones you enter into the Openstack authentication screen…

    Openstack

  2. When you log into Openstack, the Overview screen shows a list of projects.

    Openstack

  3. Enter the project name you would like to access into the Device42 Project Name field.

Optionally, you can also:

  • Choose the vendor. Please note that all vendors are user-defined. Device42 does not ship with a list of vendors.
  • Choose a VRF Group. If you select a VRF Group, then all IPs found will be placed in subnets in that VRF Group. This is useful if you have duplicate IPs in your internal network.
  • Check the “Remove unfound instances from Device42″ box. If you check this box, then each time this auto-discovery job is run, any devices that were previously created for this account but were not found by the auto-discovery job will be deleted. By checking this box, you can ensure that Device42 will remain in sync with Openstack. If you leave it unchecked, then you may end up with Device42 Cloud Instances (cloud devices) that no longer exist in Openstack.

Next, you should “Save and Continue”. Then you can click ‘Run’ to run the job immediately. Or you can save it or save it and have it run on a regular schedule.

Linode Auto-discovery

Add Linode Disovery

For access to Linode, you will need your API Key. To create a Linode API Key, go to your Linode console…

Linode

Select “My Profile” and navigate to “API Keys”

Linode

From here, you can create your API Key that Device42 needs to gain access.

Optionally, you can also:

  • Choose the vendor. Please note that all vendors are user-defined. Device42 does not ship with a list of vendors.
  • Choose a VRF Group. If you select a VRF Group, then all IPs found will be placed in subnets in that VRF Group. This is useful if you have duplicate IPs in your internal network.
  • Check the “Remove unfound instances from Device42″ box. If you check this box, then each time this auto-discovery job is run, any devices that were previously created for this account but were not found by the auto-discovery job will be deleted. By checking this box, you can ensure that Device42 will remain in sync with Linode. If you leave it unchecked, then you may end up with Device42 Cloud Instances (cloud devices) that no longer exist in Linode.

Next, you should “Save and Continue”. Then you can click ‘Run’ to run the job immediately. Or you can save it or save it and have it run on a regular schedule.

Cloud Instance Information

Cloud Instance Information

The Device view and edit pages will now show “Cloud Instance Information” under the Properties tab.


« »