Configure Application Insights with managed identity instead of instrumentation key
I have a .NET Framework v4.8.2 application integrated with application insights, utilizing the instrumentation key for directing requests to application insights. Nevertheless, I would like to move this over to Role-Based Access Control (RBAC) as illustrated here: https://learn.microsoft.com/en-us/azure/azure-monitor/app/resources-roles-access-control.
I would like to remove the use of the instrumentation key entirely within the application and instead adopt Azure Managed Identity (DefaultAzureCredential) with permissions using terraform to publish to application insights. Is this possible? if so, how would I go about doing this?
Currently I have an applicatinsightsconfig file with <InstrumentationKey>MyKey</InstrumentationKey> that I would like to remove and replace with managed identity.
A few parts here:
- Ensure that you're on the latest version of .NET Application Insights SDK (which supports both AAD auth and Connection Strings).
- Switch to using Connection String (instead of Instrumentation Key) [this is also known as
regional ingestioncompared toglobal ingestion(which is deprecated)]. - Start to use Managed Identity (don't forget to assign "Monitoring Metrics Publisher" role).
- Validate that ingestion continues to work
- Disable "Local Auth" (
Properties->LOCAL AUTHENTICATION: Enabled (click to change)-> Switch toDisabled):
Note, Instrumentation Key will continue to be a part of a Connection String but with AAD auth enabled (or more exactly with Local auth disabled) it starts to act only as a resource identifier rather than key.
- Simple string replace in xml
- OpenTelemetry logging to console in JSON format
- Azure DevOps Pipelines XCode 16.0 unable to find utility "actool"
- Error NU1605 Detected package downgrade
- Why the compiler decide 2.3 is double and not decimal?
- SignalR dispose of HubConnection
- Microservices using .net Framework 4 and above ( instead of .NET Core)
- Should I distribute the Mailkit System. dependencies
- How do I get a reference to IWebHostEnvironment inside a library project? (Also inside static class :()
- Should I always disconnect event handlers in the Dispose method?
- How can I split a list or IEnumerable into smaller lists of N size?
- Two-way / bidirectional Dictionary in C#?
- Difference between compiling as C# 3.0 or ISO-1 or ISO-2?
- C# interface method declared in Base class need not be again implemented in Derived class
- How can i create single nuget package out of two class libraries?
- Publish .net MAUI Application as windows executable
- What is the syntax for an inner join in LINQ to SQL?
- How to create *.docx files from a template in C#
- .NET Core Razor - scenario on how to mix C# with html
- An exception of type 'System.InvalidOperationException' occurred in System.Private.CoreLib.dll
- .Net core Dependency injection - with parameters
- Comparing Integer and Integer? results in Boolean? not Boolean
- How can a generic interface reference accept a non generic object?
- C# failing to set property inside IEnumerable
- Video processing in .NET
- Why do some regex engines match .* twice in a single input string?
- .NET 8 windows service thinks hosting environment is production when debugging locally
- Why do I get this compile error trying to call a base constructor/method that takes a dynamic argument?
- Is double read atomic on an Intel architecture?
- What operations are atomic in C#?