WI-PX-002 - Generate Asset Inventory
Purpose
This Work Instruction documents the process for satisfying Platform X's Asset Reporting requirement that is mandated by UW-Madison and UW System Policy
Responsibilities
DevSecOps Engineer - is responsible for generating the Asset Inventory Report annually and submitting the supporting documentation to the Asset Repository Share
Instructions
Prerequisites:
-
Installed and configured Git client
-
Permissions granted to access the Asset Repository Share
-
Contact asset-reporting@doit.wisc.edu to request access to the Asset Reporting Share (You will receive a confirmation email when your access is granted)
-
-
PowerShell >= 5.x installed (for MacOS), and the following modules are installed:
# Note: Scope parameter negates needed to have local admin to install
Install-Module ImportExcel -Scope CurrentUser
-
Azure CLI >= 2.38.0 installed, and the following extensions are installed:
az extension add --name account
az extension add --name resource-graph
Note: By default, Azure Resource Inventory will call to install the required PowerShell modules and Azure CLI components, but you must have administrator privileges during the script execution.
Steps:
1. Clone the Microsoft/ARI repository locally
cd {git working directory}
git clone https://github.com/microsoft/ARI.git
2. Navigate to the cloned repo locally
cd ARI
3. Run the Inventory PowerShell script
.\AzureResourceInventory.ps1 -TenantID b3ecc177-31e5-49de-963f-746c54830330
4. Successfully authenticate to Azure AD using your Platform X (@platformx.wisc.edu) identity
5. The script will execute, first validating that the prerequisites are met, followed by querying resources with the specified Azure tenant/directory
6. The resulting .xlsx file will be exported to the following path, which will be created if they don't already exist, for retrieval:
- Windows = C:\AzureResourceInventory\
7. Mount the SMB Asset Repository Share (if not already connected to your local device); the drive letter it is mounted to is trivial
Note: Use your UW-Madison NetID identity to authenticate with the SMB share by prefixing the username with 'ad\'
8. Rename the .xlsx export to Cloud-Azure-AssetInventory-Madison-A538200-SMPH-CHI2-CLINICAL HEALTH INFO INST-{year}.xlsx and then upload the file to the mounted SMB share. This inventory data will be imported annually, at the end of the calendar year, for submission to UW System the following March 1st.
Note: the CSV name MUST align to the following syntax to maintain integrity of data:
Cloud-Azure-AssetInventory-Madison-{UDDS}-{UnitName}-{Year}.xlsx
Be aware: If you have submitted your Inventory, but wish to change your records, please email asset-reporting@doit.wisc.edu
Document History
| Reviewed Date | Change Reason | Approver |
|---|---|---|
| 02/02/2023 | Initial Work Instruction documented (feedback incorporated from Asset Reporting team) | Mike Collins |