Skip to main content

Microsoft Azure Integration

The Azure integration allows you to automatically import cloud resources from your Azure subscriptions into Revision, keeping your architecture documentation synchronized with your actual infrastructure.

Configuration

To sync resources from Azure, an App Registration with the Reader permission is required. For Revision to able to use the App Registration and call the Azure API, it needs the following:

  • A Tenant ID,
  • a Subscription ID,
  • a Application (client) ID,
  • and a Client Secret.

Let's create an App Registration and get those values.

Step 1: Sign in to Azure Portal

  • Go to https://portal.azure.com.
  • Select Microsoft Entra ID (formerly Azure Active Directory).

Step 2: Register a New Application

  • In the Entra ID blade, go to App registrations > New registration
  • Enter:
    • Name: AzureResourceReaderApp (or any name you prefer)
    • Supported account types: "Accounts in this organizational directory only"
    • Leave the Redirect URI blank
  • Click Register

Step 3: Generate a Client Secret

  • After registration, open your new app
  • Go to Certificates & secrets and add a new client secret
  • Enter a description (e.g. "Reader secret") and choose an expiration period
  • Click Add
  • Copy the Client Secret value immediately — this is your generated secret, you won't be able to see it again later
  • Copy the Application (client) ID

Step 4: Copy all other values

  • Navigate back to the Apps overview and copy the Tenant and Subscription IDs

Step 5: Assign Reader Role to the App

Finally, you need to grant the app read access to your Azure resources.

  • Go to the Azure portal home
  • Navigate to the subscription you want to read resources from
  • Open Access control (IAM) and Add role assignment
  • Under Role, select Reader and press "Next"
  • Under Assign access to, choose "User, group, or service principal"
  • Click Select members, search for your app's name, and select it
  • Click "Review + assign"

Supported Resources

Revision will currently import the following types from Azure:

  • API Management
    • API Operation
  • Application Insight
  • Cosmos DB
  • Data Factory
  • Event Grid
  • Event Hubs
  • Function App
    • Function
  • Integration Account
  • Log Analytics Workspace
  • Logic Apps
  • Managed Instance SQL
  • Service Bus
    • Queue
    • Topic
    • Subscription
  • Storage Account
  • Web Apps
  • Virtual Network

The amount of listed resources may as such not be the same as the total resource count in Azure. Revision notes these as "excluded" resources during the import process.

Automatic Data Enrichment

All imported Azure components will have generated attributes containing system-specific information that provides detailed context about each resource:

All Azure Resources:

  • Full Azure Portal URL for direct navigation to the resource
  • Resource metadata (region, pricing tier, configuration details)
  • Resource type and deployment information

These attributes are automatically maintained and updated during synchronization, ensuring you always have current access to detailed Azure configuration information directly from your architecture diagrams.