question

JenChyiChan1-2577 avatar image
0 Votes"
JenChyiChan1-2577 asked SuyashChoubey-0628 commented

How webhook endpoint authenticate with Azure monitor secure webhook?

Hi,

I'm a developer and currently explore on the Azure monitor and one of its action group "secure webhook": https://docs.microsoft.com/en-us/azure/azure-monitor/alerts/action-groups#secure-webhook

Looking to integrate a webhook server to listening to the Azure monitor alert thru the secure webhook action channel.
But there is not much details regarding what's the handshaking and interaction between the secure webhook and the webhook endpoint/server.

What's the requirements and steps required for the webhook server to able to receive Azure alert thru secure webhook?
How's the token authentication or oauth authentication been done in between Azure AD with the webhook server?

Hope that there will be sample or more integration guides provided.
Thank you.

Regards,
Jen Chyi

azure-active-directoryazure-monitor
· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@JenChyiChan1-2577 - Apologies for the delay. I wanted to quickly understand - where exactly the WebHook server is hosted or additional context to the Webhook server ?

. To give you a high level overview - Secure Webhook action enables you to take advantage of Azure Active Directory to secure the connection between your action group and your protected web API (webhook endpoint).
https://docs.microsoft.com/en-us/azure/active-directory/develop/scenario-protected-web-api-app-registration.

Came across a blog that talks about having the Http azure functions being triggered through Azure Monitor secure Webhooks via Protected Web API app.
https://dev.to/superjohn140/azure-alerts-secure-webhook-azure-functions-with-authentication-364


0 Votes 0 ·
JenChyiChan1-2577 avatar image JenChyiChan1-2577 SathyamoorthyVijayakumar-MSFT ·

Hi Sathyamorrthy,

The webhook server is hosted external (not within Azure).
From the doc and guides I'm guessing that the webhook server side will need to perform some sort of client authentication using either application ID / client ID / client secret that registered with Azure AD?
Wonder whether there is any sample application or guides what need to be done for the endpoint/webhook that consume the secure webhook.

Will setup these resources on my portal to try out.

Thanks.
Jen

2 Votes 2 ·

Jen, did you ever get an answer on this? We're looking at calling a 3rd party webhook from our Azure Action Group and were wondering if there was a way to do it securely. Your question, which appears unanswered, seems to be getting at the same point.

1 Vote 1 ·

Hi Jen,

Did you find any answer to this? I am also looking to call an external webhook using azure action group but can't find a way for authorization or certificate exchange.

0 Votes 0 ·

0 Answers