Skip to main content

Creating an Application for Azure CDN

You can add your Azure CDN to IO River and use it with your services. To add Azure CDN as one of your CDN providers, you need an Azure application that can be used with IO River. In general, the application needs to have permissions to manage your Azure CDN in your Azure account.

Step 1 - Registering IO River application:

  1. Sign in to your Azure account.
  2. Navigate to App registrations in your Azure account.
  3. Click New Registration.
  4. Fill the registration form:
    1. Type IORiver for the name of the application.
    2. Click Register.
  5. Select the API permissions tab in the sidebar to set permissions:
    1. Click Add permission.
    2. Click Microsoft Graph.
    3. Click Application permissions.
    4. Select User.Read.All and click Add permission.
    5. Click Grant admin consent to IO River.
  6. Select the Certificate & secrets tab in the sidebar to create a secret:
    1. Click New client secret.
    2. Set description and expiration, and click Add.
    3. Copy the value of the secret.
  7. Select the Overview tab in the sidebar and copy the following credentials:
    • Application ID (Client ID)
    • Directory ID (Tenant ID)

Step 2 - Providing permissions (roles) to the application:

  1. Navigate to the relevant Resource Group in your Azure account.
  2. Select Access control (IAM) from the sidebar.
  3. Select the Role assignments tab.
  4. Click Add and select Add Role assignments.
  5. Add the role CDN profile contributor.
  6. Click Next.
  7. Click Select members.
  8. Search for the IORiver application, and click Select.
  9. Click Review + assign.

Repeat steps 4-9 to add the following additional roles:

  • CDN profile reader
  • Monitoring reader
  • Key vault administrator
  • Key vault certificate officer
  • Key vault contributor

In addition to the values copied in Step 1, also copy the Subscription ID and the name of your Resource Group.

Example of Azure credentials:

tenant_id = "d201248a-c2e9-402e-8281-a5d3eefd8d3d"
client_id = "f9c47934-d594-4f65-8df5-4e71c58de5dd"
client_secret = "B9M8Q~E8nKhbrGTSRGS5TXUfQ0WdZ11JJoytEc_-"
subscription_id = 'e986b596-dbc9-cf41-8666-985b32e6bf71'
resource_group = "staging"

Add the credentials when you add your Azure CDN here.