search
Release Notes

Deploy with Azure Container Instances

Instructions for running an Insight Point as a Docker container using an Azure container instance.

Veza recommends deploying an Insight Point within Microsoft Azure for a secure connection to PostgreSQL for Azure Database resources. This document includes instructions to run an Insight Point with an Azure Container Instance.

hashtag
Step 1: Create a Container Instance resource

Log in to your Azure Tenant and go to Container Instancesarrow-up-right. Create a new resource:

Click "Create" to add a Container Instance.

hashtag
Step 2: Configure the container specifications

In the creation wizard, configure the container to meet the Insight Point system requirements:

  1. Size: Ensure the container instance has at least 2 CPU cores and 4 GB memory allocated

  2. Image Source: Select Other registry and add the path to Insight Point image: public.ecr.aws/veza/insight_point:latest

Specify the Veza public repository.

hashtag
Step 3: Assign an appropriate virtual network

Add the Insight Point to the virtual network. Choose Private and enter the virtual network assigned to other resources the Insight Point will connect to:

Configure virtual network.

hashtag
Step 4: Configure the Registration Key & Instance ID

In the advanced settings, configure the Insight Point registration key:

  1. Navigate to the Advanced tab.

  2. In the Environment Variables section, add the Insight Point provisioning key to the DP_REGISTER_KEY variable.

  3. To generate a new registration key, visit the Integrations -> Insight Point page in the Veza console.

  4. (Optional) For High Availability deployments, add a unique DP_INSTANCE_ID variable to distinguish this instance from others.

Specify the registration key.

hashtag
Step 4a: Configure Webhook Relay (Optional)

If you need to send webhooks to destinations in your private network, you can enable webhook relay. For an overview of webhook relay, when to use it, security considerations, and supported host formats, see Webhook Relay in the main Insight Point documentation.

To configure webhook relay during Azure Container Instance deployment:

  1. Still in the Advanced tab's Environment Variables section, add the following variables:

    • Name: WEBHOOK_RELAY_ENABLED, Value: true

    • Name: WEBHOOK_RELAY_ALLOWED_HOSTS, Value: comma-separated list of allowed destinations (e.g., webhook.site,*.example.com,172.17.0.0/24)

Confirm your settings by clicking Review + create, then deploy the container by selecting Create.

hashtag
Step 4b: Configure Tags (Optional)

Tags are custom key-value labels that help organize and categorize your Insight Point instances. For an overview of tags, their use cases, and requirements, see Tags in the main Insight Point documentation.

To configure tags during Azure Container Instance deployment:

  1. Still in the Advanced tab's Environment Variables section, add the following variable:

    • Name: INSIGHT_POINT_TAGS

    • Value: comma-separated list of key:value pairs (e.g., environment:production,datacenter:us-west-1,team:platform-engineering)

hashtag
Step 5: Update the Azure integration to use the Insight Point

Finally, update the integration configuration in Veza so that the connection is made using the new Insight Point, instead of the Veza SaaS platform:

  1. Log in to Veza, go to the Integrations page, and find the Azure integration on the list of providers.

  2. Click Edit to open the configuration.

  3. Change the Insight Point from (default) to the one you created.

  4. Save the integration.

PreviousDeploy with Virtual Appliance (Legacy)NextInsight Point (Helm Chart)

Last updated

Was this helpful?