Azure DNS zones and record sets discovery using Patterns

  • Release version: Xanadu
  • Updated January 30, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Azure DNS zones and record sets discovery using Patterns

    The Discovery and Service Mapping Patterns application in ServiceNow enables automated discovery of Azure Domain Name System (DNS) zones and their record sets using two specific patterns:Azure - DNS Zones (LP)andAzure - DNS Zone Recordsets (LP). This discovery populates the Configuration Management Database (CMDB) with detailed information about DNS zones and their associated records, helping you maintain an accurate and up-to-date inventory of your Azure DNS resources.

    Show full answer Show less

    To ensure successful discovery, it may be necessary to update to the latest version of the Discovery and Service Mapping Patterns application available from the ServiceNow Store.

    Prerequisites

    • Verify Privileges: Assign the API Management Service Reader role to the user account in the Microsoft Azure Console.
    • Create Azure Service Principal Credentials: Establish credentials to enable ServiceNow to access Azure resources securely.
    • Configure Azure Service Account: Set up the cloud account within ServiceNow to connect with Azure services.
    • Create Discovery Schedule: Define schedules for discovery runs for the relevant Azure service accounts via Cloud Discovery Workspace.
    • Verify REST API Permissions: Use the Cloud Discovery patterns spreadsheet to ensure the user has all necessary permissions to run discovery patterns effectively.

    Key Features

    • Azure DNS Zones Discovery: Discovers DNS zones with attributes such as name, number of record sets, operational and install status, and state.
    • Azure DNS Record Sets Discovery: Collects details about DNS alias records and DNS name records including names, IP addresses (for aliases), operational status, and comments.
    • CI Relationships: Automatically creates relationships in the CMDB to represent the containment hierarchy between resource groups, DNS zones, DNS names, and DNS aliases, allowing for clear visibility into resource dependencies and structure.

    Key Outcomes

    • Comprehensive CMDB Population: Accurate and structured data about Azure DNS zones and records is populated in the CMDB, improving asset and configuration management.
    • Improved Visibility: The relationships between DNS zones, record sets, and their Azure resource groups provide a clear map of DNS infrastructure within your Azure environment.
    • Ongoing Maintenance: Regular updates to patterns and scheduled discovery runs ensure that your CMDB reflects current Azure DNS configurations, supporting effective IT operations and service management.

    The Discovery and Service Mapping Patterns application uses the Azure - DNS Zones (LP) and Azure - DNS Zone Recordsets (LP) Patterns to discover Azure Domain Name System (DNS) definitions (zones and their respective record sets). Discovering some of these resources may require updating to the latest version of the Discovery and Service Mapping Patterns application from the ServiceNow Store.

    Request apps on the Store

    Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

    To learn about Azure DNS zones and record sets and their version that you can discovery, refer to Detailed information on products discovered by ITOM Visibility.

    For more information on Azure cloud discovery, see Azure Cloud Discovery.

    Prerequisites

    Verify privileges
    On the Microsoft Azure Console, provide a user with the API Management Service Reader role.
    Create Azure Service Principal credentials
    For more information see: Create Azure cloud credentials.
    Configure Azure service account
    For more information, see Set up a cloud account for Azure.
    Create discovery schedule
    Create a schedule for the relevant Azure service accounts. For more information, see Create a discovery schedule in Cloud Discovery Workspace.

    Verify the REST API Permissions

    Download the Cloud Discovery patterns spreadsheet so you can grant user permissions required for running the Discovery patterns. In addition to permissions, the spreadsheet also includes useful information such as pattern names, types, CI Classes, and links to vendor documentation. New patterns are available quarterly, so check periodically to be sure you have the latest version of the spreadsheet.

    Data collected by Discovery during horizontal discovery

    Discovery populates the data in the CMDB when running the Azure - DNS Zones (LP) and Azure - DNS Zone Recordsets (LP) Patterns.

    Resources discovered by the Azure - DNS Zones (LP) pattern
    Table 1. DNS Zone [cmdb_ci_dns_zone]
    Field Description
    Name [name] The name of the DNS Zone.
    Number Of RecordSets [number_of_recordsets] The number of the recordsets defined within the DNS Zone.
    Operational status [operational_status] The operational status of the DNS Zone.
    State [state] The state of the DNS Zone.
    Install Status [install_status] The install status of the DNS Zone.
    Comments [comments] The field for general comments.
    Resources discovered by the Azure - DNS Zone Recordsets (LP) pattern
    Table 2. DNS Alias [cmdb_ci_dns_alias]
    Field Description
    Name [name] The name of the DNS alias record.
    IP Address [ip_address] IP address of the DNS alias record.
    Comments [comments] Unique identifier for an Azure DNS zone combining service account ID, DNS zone name, and a fixed hash suffix.
    Operational status [operational_status] The operational status of the DNS alias record.
    Table 3. DNS Name [cmdb_ci_dns_name]
    Field Description
    Name [name] The name of the DNS Name record.
    Operational status [operational_status] The operational status of the DNS record.
    Comments [comments] Unique identifier for an Azure DNS zone combining service account ID, DNS zone name, and a fixed hash suffix.

    CI relationships

    These relationships are created to support Azure DNS zone discovery.
    CI Relationship CI
    Resource Group [cmdb_ci_resource_group] Contains::Contained by DNS Zone [cmdb_ci_dns_zone]
    These relationships are created to support Azure DNS zone record set discovery.
    CI Relationship CI
    DNS Zone [cmdb_ci_dns_zone] Contains::Contained by DNS Name [cmdb_ci_dns_name]
    DNS Zone [cmdb_ci_dns_zone] Contains::Contained by DNS Alias [cmdb_ci_dns_alias]
    DNS Name [cmdb_ci_dns_name] Used by::Uses DNS Alias [cmdb_ci_dns_alias]