Azure DNS Connection
Learn how to configure an Azure DNS Connection for Hanzo KMS.
Hanzo KMS supports connecting to Azure DNS using a Service Principal with Client Secrets for secure access to manage DNS records in your Azure DNS zones.
To use client secret authentication, ensure your Azure Service Principal has the required permissions to manage DNS records in your Azure DNS Zone.
Prerequisites:
- Set up Azure and have an existing DNS Zone.
- An Azure Service Principal (App Registration) with a Client Secret.
In the Azure Portal, navigate to your DNS Zone that you want to use for ACME DNS validation. Click on Access control (IAM) in the left sidebar, then click Add > Add role assignment.
Search for and select the DNS Zone Contributor role, then click Next.
Click Select members, search for your App Registration (Service Principal), select it, and click Select.
Click Review + assign to complete the role assignment.
Setup Azure DNS Connection in Hanzo KMS
Navigate to the App Connections page in the desired project.
Select the Azure DNS Connection option from the connection options modal.
Fill in the Tenant ID, Client ID, Client Secret, and Subscription ID fields with the credentials from your Azure Service Principal.
You can find your Subscription ID in the Azure Portal under Subscriptions. The Tenant ID and Client ID can be found in your App Registration's Overview page.
Your Azure DNS Connection is now available for use in your Hanzo KMS projects.
How is this guide?
Last updated on