Azure DNS zones and record sets discovery using Patterns

  • Release version: Yokohama
  • Updated January 30, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Azure DNS zones and record sets discovery using Patterns

    The Discovery and Service Mapping Patterns application in ServiceNow uses specific patterns—Azure - DNS Zones (LP) and Azure - DNS Zone Recordsets (LP)—to discover Azure DNS zones and their record sets. This discovery process populates the ServiceNow Configuration Management Database (CMDB) with detailed DNS information from your Azure environment, enabling enhanced visibility and management of DNS resources.

    Show full answer Show less

    To leverage these patterns effectively, customers may need to update to the latest version of the Discovery and Service Mapping Patterns application from the ServiceNow Store. Regular updates ensure access to new patterns and the most current discovery capabilities.

    Prerequisites

    • Verify privileges: Assign a user the API Management Service Reader role in the Microsoft Azure Console to enable read access.
    • Create Azure Service Principal credentials: These credentials authenticate ServiceNow to Azure; instructions are available for creating them.
    • Configure Azure service account: Set up a cloud account in ServiceNow for Azure integration.
    • Create discovery schedule: Schedule discovery runs for the configured Azure service accounts within the Cloud Discovery Workspace.
    • Verify REST API permissions: Use the downloadable Cloud Discovery patterns spreadsheet to ensure required user permissions are granted for running discovery patterns.

    Discovered Data and CMDB Population

    When running the Azure DNS discovery patterns, ServiceNow populates the CMDB with DNS zones and record sets information:

    • DNS Zones [cmdbcidnszone]: Includes attributes such as the DNS zone name, number of record sets, operational status, state, install status, and comments.
    • DNS Alias Records [cmdbcidnsalias]: Captures alias names, associated IP addresses, operational status, comments, and unique identifiers combining service account ID and DNS zone info.
    • DNS Name Records [cmdbcidnsname]: Contains DNS record names, operational status, comments, and unique identifiers.

    Configuration Item (CI) Relationships

    To reflect the relationships within Azure DNS resources, the following CI relationships are established in the CMDB:

    • Resource Group contains DNS Zone
    • DNS Zone contains DNS Name records
    • DNS Zone contains DNS Alias records
    • DNS Name record uses DNS Alias record

    These relationships help model the hierarchical and usage dependencies of DNS resources, supporting better impact analysis and service mapping.

    The Discovery and Service Mapping Patterns application uses the Azure - DNS Zones (LP) and Azure - DNS Zone Recordsets (LP) Patterns to discover Azure Domain Name System (DNS) definitions (zones and their respective record sets). Discovering some of these resources may require updating to the latest version of the Discovery and Service Mapping Patterns application from the ServiceNow Store.

    Request apps on the Store

    Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

    To learn about Azure DNS zones and record sets and their version that you can discovery, refer to Detailed information on products discovered by ITOM Visibility.

    For more information on Azure cloud discovery, see Discovery for Microsoft Azure Cloud.

    Prerequisites

    Verify privileges
    On the Microsoft Azure Console, provide a user with the API Management Service Reader role.
    Create Azure Service Principal credentials
    For more information see: Create Azure cloud credentials.
    Configure Azure service account
    For more information, see Set up a cloud account for Azure.
    Create discovery schedule
    Create a schedule for the relevant Azure service accounts. For more information, see Create a discovery schedule in Cloud Discovery Workspace.

    Verify the REST API Permissions

    Download the Cloud Discovery patterns spreadsheet so you can grant user permissions required for running the Discovery patterns. In addition to permissions, the spreadsheet also includes useful information such as pattern names, types, CI Classes, and links to vendor documentation. New patterns are available quarterly, so check periodically to be sure you have the latest version of the spreadsheet.

    Data collected by Discovery during horizontal discovery

    Discovery populates the data in the CMDB when running the Azure - DNS Zones (LP) and Azure - DNS Zone Recordsets (LP) Patterns.

    Resources discovered by the Azure - DNS Zones (LP) pattern
    Table 1. DNS Zone [cmdb_ci_dns_zone]
    Field Description
    Name [name] The name of the DNS Zone.
    Number Of RecordSets [number_of_recordsets] The number of the recordsets defined within the DNS Zone.
    Operational status [operational_status] The operational status of the DNS Zone.
    State [state] The state of the DNS Zone.
    Install Status [install_status] The install status of the DNS Zone.
    Comments [comments] The field for general comments.
    Resources discovered by the Azure - DNS Zone Recordsets (LP) pattern
    Table 2. DNS Alias [cmdb_ci_dns_alias]
    Field Description
    Name [name] The name of the DNS alias record.
    IP Address [ip_address] IP address of the DNS alias record.
    Comments [comments] Unique identifier for an Azure DNS zone combining service account ID, DNS zone name, and a fixed hash suffix.
    Operational status [operational_status] The operational status of the DNS alias record.
    Table 3. DNS Name [cmdb_ci_dns_name]
    Field Description
    Name [name] The name of the DNS Name record.
    Operational status [operational_status] The operational status of the DNS record.
    Comments [comments] Unique identifier for an Azure DNS zone combining service account ID, DNS zone name, and a fixed hash suffix.

    CI relationships

    These relationships are created to support Azure DNS zone discovery.
    CI Relationship CI
    Resource Group [cmdb_ci_resource_group] Contains::Contained by DNS Zone [cmdb_ci_dns_zone]
    These relationships are created to support Azure DNS zone record set discovery.
    CI Relationship CI
    DNS Zone [cmdb_ci_dns_zone] Contains::Contained by DNS Name [cmdb_ci_dns_name]
    DNS Zone [cmdb_ci_dns_zone] Contains::Contained by DNS Alias [cmdb_ci_dns_alias]
    DNS Name [cmdb_ci_dns_name] Used by::Uses DNS Alias [cmdb_ci_dns_alias]