Is there a way to use workload identity (or managed identity) to authenticate OTEL against Azure Application Insights? #34270
Replies: 6 comments
-
|
CC @jeanbisutti |
Beta Was this translation helpful? Give feedback.
-
|
You could perhaps configure the connection string at runtime and do some verifications at this step: https://learn.microsoft.com/en-us/azure/azure-monitor/app/java-standalone-config#connection-string-configured-at-runtime If you need more assistance, could you please create a Github issue in https://github.com/microsoft/ApplicationInsights-Java? |
Beta Was this translation helpful? Give feedback.
-
|
I don’t think the connection string is sufficient, managed identity would require fetching tokens from Entra and attaching them to the telemetry requests. |
Beta Was this translation helpful? Give feedback.
-
|
It's perhaps what you need: https://learn.microsoft.com/en-us/azure/azure-monitor/app/azure-ad-authentication?tabs=java |
Beta Was this translation helpful? Give feedback.
-
|
Yes, but I need OTEL to support that. |
Beta Was this translation helpful? Give feedback.
-
|
It's perhaps what you are looking for: https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/main/exporter/azuremonitorexporter/AUTHENTICATION.md#aadentra-authentication |
Beta Was this translation helpful? Give feedback.
-
I have a policy that requires local authentication to be disabled for Application Insights. With that disabled, the instrumentation key alone will not allow access, I need to ensure calls are coming from an identity with Monitoring Metrics Publisher role. Is there any way to accomplish this?
Beta Was this translation helpful? Give feedback.
All reactions