Application Workflow Connection Profiles

The following topics describe the connection profile parameters for application workflow platforms and services:

AWS Step Functions Connection Profile Parameters
Azure Logic Apps Connection Profile Parameters

AWS Step Functions Connection Profile Parameters

The following table describes the AWS Step Functions connection profile parameters.

Parameter	Description
Description	Defines a free-text description of the connection profile.
Step Functions URL	Determines the authentication endpoint for AWS Step Functions, based on the following format: https://states.<region name>.amazonaws.com https://states.eu-east-1.amazonaws.com
AWS Region	Determines the region where the AWS Step Functions jobs are located. us-east-1
Authentication	Determines one of the following authentication methods: AWS Key & Secret: Used for services outside the AWS infrastructure. AWS IAM Role: Used for services within the AWS infrastructure.
AWS Access Key	Defines the access key assigned to the account in the AWS Step Functions integration setup.
AWS Secret	Defines the secret access key assigned to the account in the AWS Step Functions integration setup.
IAM Role	Defines the Identity and Access Management (IAM) role for the AWS Step Functions connection.
Connection Timeout	Determines the number of seconds to wait after Control-M initiates a connection request to AWS Step Functions before a timeout occurs. Default: 20

Azure Logic Apps Connection Profile Parameters

The following table describes the Azure Logic Apps connection profile parameters.

Parameter	Description
Subscription ID	Defines the Azure account subscription ID, which is located in the Azure portal.
Authentication Method	Determines one of the following authentication methods to connect to Azure Logic Apps: Service Principal: An Azure service principal, also known as an App Registration, is an identity created to use applications, hosted services, and automated tools that access Azure resources. This access is restricted by the roles assigned to the service principal, which gives the Azure Administrator control over which resources are accessed and at which level. Use this option if the Agent is installed on-premises or with any other cloud vendor. Managed Identity: Enables you to access other Azure Active-Directory-protected resources. The identity is managed by the Azure platform. You do not need to provide credentials within Control-M. Use this option if the Agent is installed on an Azure virtual machine that has an assigned a Managed Identity with the required permissions. Managed Identity authentication is based on an Azure token that is valid for 24 hours, by default. You can extend the Token lifetimes in Azure.
Specify Managed Identity Client ID	(Managed Identity) Determines whether the client ID for the managed identity is specified by the Managed Identity Client ID parameter.
Managed Identity Client ID	(Managed Identity) Determines which client ID to use as the managed identity. You only need to complete this field if your Azure virtual machine has multiple managed identities and you have selected the Specify Managed Identity Client ID checkbox. If you only have one ID, it is detected automatically.
Resource Group	Determines the resource group where your logic app is located.
Tenant ID	(Service Principal) Defines the tenant ID.
Application ID	(Service Principal) Defines the application ID of the registered application. The service principal must be an Azure Logic Apps workspace user with a Contributor or Owner role.
Client Secret	(Service Principal) Defines the password associated with the Azure user and the application.
Azure Login URL	(Service Principal) Determines the Azure AD authentication endpoint base URL. https://login.microsoftonline.com
Connection Timeout	Determines the number of seconds to wait after Control-M initiates a connection request to Azure Logic Apps before a timeout occurs. Default: 50