Connect your Azure subscription to discover and monitor VMs, App Service apps, AKS clusters, and the metrics in Azure Monitor. Nova uses a read-only service principal, so it can see your resources but never change them.
In the Azure portal, register an application (a service principal) and create a client secret. Note the tenant ID, client ID, client secret, and subscription ID.
Assign the service principal the Reader role on the subscription or the resource groups you want to monitor. Reader is read-only by design.
In Nova, go to Settings > Integrations, find the Azure tile, and click Connect.
Enter the tenant ID, client ID, client secret, and subscription ID, then choose which resource groups to import.
Click Validate. Your Azure resources appear in Nova within a few minutes and feed the service map.
Scope the service principal to Reader only. Nova never needs write access to monitor your environment.