Skip to content
/ check_mk_azure_secrets Public

A plugin for Checkmk to monitor expiration of client secrets in Azure.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Sune1337/check_mk_azure_secrets

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
.devcontainer
.devcontainer
 
 
.idea
.idea
 
 
assets
assets
 
 
packages
packages
 
 
plugins/azure_secrets
plugins/azure_secrets
 
 
web/plugins/wato
web/plugins/wato
 
 
README.md
README.md
 
 
package
package
 
 

Repository files navigation

Example output of plugin

Example output

Steps to monitor azure client secrets in Checkmk.

Configure an application in Azure

While configuring Azure, take note of the following data that will be used when configuring the special agent.

Config in Checkmk Config in Azure
Authority https://login.microsoftonline.com/TENANT_ID
Client ID CLIENT_ID
Client secret CLIENT_SECRET
  1. Create an application registration.

Create the application registration in Azure

  1. In the created app, create a client secret.

Create the client-secret for the application

  1. Assign the application read permissions. Also don't forget to grant admin consent.

Assign permissions to the application

While doing the steps, take note of the following data that will be needed when configuring the azure_secrets special agent.

Configure Checkmk.

Download and install the mkp file in Checkmk.

Add a host

This host will represent a connection to Azure for a single tenant. Services will be created for all client secrets in all applications. Creating the host in Checkmk

Create a rule to configure azure_secrets plugin

Find the special agent configuration rule Create the special agent configuration rule

Go to the host, run service discovery and apply changes.

Development

Environment

  • This project was built using Jetbrains PyCharm, Docker desktop and dev-containers.
  • When running the dev-container the default username and password is: cmkadmin.
  • The address to Checkmk is: http://localhost:5000. If you have other apps listening to port 5000, you need to modify devcontainer.json.

Build mkp

  1. Open a terminal in the docker image.
  2. Execute the build script.
$WORKSPACE/.devcontainer/build.sh

About

A plugin for Checkmk to monitor expiration of client secrets in Azure.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

1.0.4 Latest
Aug 28, 2024
+ 4 releases

Packages

No packages published

Languages