This guide provides instructions for creating and configuring all the components needed to send Devolutions Hub Business logs to Azure Log Analytics.
Open the Azure portal and navigate to App Registrations.
Click on New Registration.
Give your app a name and click Register (no Redirect URL is necessary).
Under Supported account types, select Accounts in this organizational directory only.
After registration, locate Client ID and Tenant ID under the Overview section. These will be required later.
Create a Data Collection Endpoint (DCE) in Azure to receive requests from Devolutions Hub Business. In Devolutions Hub Business, this corresponds to the Azure Endpoint field.
Follow Microsoft's tutorial to create a Log Analytics table in Azure for sample data. Here is the required sample data sent by Devolutions Hub Business.
The TimeGenerated column in Azure Log Analytics is essential because it's the primary timestamp that determines when a log record was ingested into the system.
Transformation editor : source | extend TimeGenerated = now() will create a column TimeGenerated and log the time of the sync.
It is recommended to wait about 40 minutes after configuring Azure to allow all settings to fully synchronize. The synchronization frequency can be adjusted as needed.
Assign the required permissions to the DCR: Monitoring Metrics Publisher.
Access DCR.
Access control (IAM).
Add Role assignment.
Select Monitoring Metrics Publisher.
Click Next.
In the Members section, select the app registration that was previously created.
Open the Devolutions Hub Business web interface.
Go to Administration - Logging.
Enter the Azure credentials.
The Devolutions Hub Services installer facilitates the installation and configuration of different features such as the Privileged Access Management module, the Encryption Service (SSO-enabled feature) and the Hub Reporting service. The installed service will establish communication between your Devolutions Hub Business and your internal resources.
Note that the log synchronization between your Devolutions Hub Business and Microsoft Azure requires the Devolutions Hub Services to be installed and active.
-
Open Devolutions Hub Business.
-
Click Administration – Application Identities.
Administration – Application Identities -
Select Add Application identity (+).
Add Application Identity (+) -
Enter a name and click Add.
-
Save the given Application Secret and Application key to your clipboard or as a PDF file. It will be needed during Devolutions Hub Services' installation.
Save the given Application Secret and Application key
Go to Devolutions Hub Business.
Click Administration – System permissions.
Go to the edit form.
Select System.
Select your Application User in the drop-down menu under Manage privileged access tasks, Manage privileged access providers and View administration logs and user activity.
You need to grant permission on the vault either at System level or Individual PAM vault level.
In Devolutions Hub Business, go to Administration – Configuration & Security – System permissions.
Go to the edit form.
Select Vault.
Choose your Application user in the drop-down menu under the Contributor section.
Click Update to close the window.
In Devolutions Hub Business, go to Administration – Management –Vault.
Click Add.
Select PAM Vault in the menu to create your PAM Vault.
Go to the Security menu.
Select the Edit tab.
Choose your Application user in the drop-down menu under the Contributor section.
Click Add to close the window.
-
Launch the installer that you downloaded.
setup -
Click Next.
-
Read the End-User License Agreement and click I accept the terms in the License Agreement.
-
Click Next.
-
Select PAM in the Custom Setup. Note that the Encryption feature is currently unavailable.
-
Click Next.
-
Enter your Host URL.
-
Enter the Application Secret and Application key previously saved.
-
Click Finish to complete the installation.
-
Click Test Connection.
-
If your connection is successful, press Next.
Connection successful
Devolutions Hub Services logs are available here: C:\ProgramData\Devolutions\Hub\Reporting Service\Logs
.