Azure Batch Accounts Connection Profile Parameters

Determines one of the following identity types to connect to Azure Batch Accounts:

• Managed Identity: Enables you to access other Azure AD-protected resources. The identity is managed by the Azure platform and does not require you to provide credentials within Control-M. Use this option if the Agent is installed on an Azure virtual machine that has an assigned Managed Identity with the required permissions.

  Managed Identity authentication is based on an Azure token that is valid, by default, for 24 hours. Token lifetime can be extended by Azure.

• Service Principal: An Azure service principal, also known as App Registration, is an identity created for use with applications, hosted services, and automated tools to access Azure resources. This access is restricted by the roles assigned to the service principal, which gives the Azure Administrator control over which resources can be accessed and at which level. Use this option if the Agent is installed on-premises or any other cloud vendor.

(Service Principal) Defines the Azure AD authentication endpoint base URL.

Example: https://login.microsoftonline.com

(Service Principal) Defines the Tenant ID in Azure AD.

Defines the application (service principal) ID of the registered application for the Azure Batch service.

The service principal must be for an Azure Batch account with a Contributor role.

(Service Principal) Defines the secret (password) associated with the Azure user and the application.

Defines the identifier for the Azure Batch account for login via Azure AD.

This identifier is a constant value set to https://batch.core.windows.net/

Defines the region ID associated with the Batch account in Azure Portal.