Downloaded 37 times
![Singapore, 2015Singapore, 2015 "resources": [ { "name": “myStorageAccount", "type": "Microsoft.Storage/storageAccounts", "location": “westus", "apiVersion": "2015-05-01-preview", "properties": {"accountType": “Standard_LRS"} } ] Declarative -> Imperative ???](https://image.slidesharecdn.com/buildinginfrastructurewithazureresourcemanagerusingpowershell-151021153145-lva1-app6891/75/Building-infrastructure-with-Azure-Resource-Manager-using-PowerShell-20-2048.jpg)
![Singapore, 2015Singapore, 2015 "resources": [ { "name": “myStorageAccount", "type": "Microsoft.Storage/storageAccounts", "location": “westus", "apiVersion": "2015-05-01-preview", "properties": {"accountType": “Standard_LRS"} } ] PUT /subscriptions/{subId}/resourceGroups/{rgName}/providers/Microsoft.Storage/storageAccounts/ myStorageAccount?api-version=2015-05-01-preview { “location”: “westus”, "properties": {"accountType": “Standard_LRS"} } Declarative -> Imperative ??? implied](https://image.slidesharecdn.com/buildinginfrastructurewithazureresourcemanagerusingpowershell-151021153145-lva1-app6891/75/Building-infrastructure-with-Azure-Resource-Manager-using-PowerShell-21-2048.jpg)
Uploaded byK.Mohamed Faizal
Building infrastructure with Azure Resource Manager using PowerShell
This document contains a presentation on using Azure Resource Manager and PowerShell to build infrastructure on Azure. It discusses Azure Resource Manager tools like PowerShell and the Azure Portal. It covers customizing templates, role-based access control, and provides an example Azure architecture template. It also discusses best practices like organizing resources into resource groups and using tags. The presentation aims to help users deploy templates and consistently manage Azure resources.
Building infrastructure with Azure Resource Manager using PowerShell
- 1. Singapore, 2015 Platinum Sponsors Singapore,2015 Building infrastructure with Azure Resource Manager using PowerShell K.Mohamed Faizal, Azure MVP, Singapore
- 2. Singapore, 2015Singapore, 2015 Agenda Overview 2Azure Resource Manager Tools 3 Customizing Templates 4 Role Based Access Control (RBAC) 5 Q&A 1
- 3.
- 4.
- 5.
- 6. Singapore, 2015Singapore, 2015 Azure– SharePoint Architecture Virtual Network Microsoft Azure Cloud Service Availability Set Active Directory & DNS Cloud Service Cloud Service Availability Set Search Server Availability Set Web Front End Availability Set Apps Servers Availability Set Database Gateway subnet Active VPN Availability Set Distributed Cache Availability Set Office Web Apps
- 7. Singapore, 2015 Platinum Sponsors Singapore,2015 Demo Azure Portal – Overview
- 8. Singapore, 2015Singapore, 2015 Consistent Management Layer AZURERESOURCE MANAGER API What is Azure Resource Manager?
- 9. Singapore, 2015Singapore, 2015 ResourceGroup container for multiple resources resources exist in one* resource group resource groups can span regions resource groups can span services RESOURCE GROUP *and only one
- 10. Singapore, 2015 Resource GroupLifecycle Should these resources be in the same group or a different one?
- 11. Singapore, 2015 IT DEV Infrastructure &Configuration as Code Value • Deployment Optimization • Accelerate Delivery Measure • Deployment Rate • MTTR CODE STAGE PRODUCTION
- 12. Singapore, 2015 Supported Resources•Websites • SQL-A DB • MySQL DB • VS Online • Application Insights • Classic Compute* • Classic Network* • Classic Storage* • BizTalk Services • Scheduler • Search • Cache • ….. • All Existing RP’s will move over into the new stack. • https://management.azure.com/subscriptions/{{subscriptionId}}/providers?api-version=2014-04-01-preview * Only supported via the Preview Portal
- 13. Singapore, 2015Singapore, 2015 InstallAzure PowerShell Tool • Install the Azure PowerShell modules • Microsoft Web Platform Installer • (OR) Go To Github and Install • https://github.com/Azure/a zure-powershell/releases
- 14.
- 15. Singapore, 2015Singapore, 2015 WindowsPowerShell
- 16. Singapore, 2015Singapore, 2015 AddAzure Subscription
- 17. Singapore, 2015Singapore, 2015 RestAPI / Postman
- 18. Singapore, 2015 Visual StudioAzure RM Tools http://www.microsoft.com/en-us/download/details.aspx?id=43740
- 19. Singapore, 2015Singapore, 2015 Deployment trackstemplate execution created within a resource group allows nested deployments RESOURCE GROUP
- 20. Singapore, 2015Singapore, 2015 "resources":[ { "name": “myStorageAccount", "type": "Microsoft.Storage/storageAccounts", "location": “westus", "apiVersion": "2015-05-01-preview", "properties": {"accountType": “Standard_LRS"} } ] Declarative -> Imperative ???
- 21. Singapore, 2015Singapore, 2015 "resources":[ { "name": “myStorageAccount", "type": "Microsoft.Storage/storageAccounts", "location": “westus", "apiVersion": "2015-05-01-preview", "properties": {"accountType": “Standard_LRS"} } ] PUT /subscriptions/{subId}/resourceGroups/{rgName}/providers/Microsoft.Storage/storageAccounts/ myStorageAccount?api-version=2015-05-01-preview { “location”: “westus”, "properties": {"accountType": “Standard_LRS"} } Declarative -> Imperative ??? implied
- 22. Singapore, 2015Singapore, 2015 •Resource Extensions • VM → DSC / Chef / Puppet / Custom script / etc. • AppService → WebDeploy • SQL DB → BACPAC • Copies + length (like PB+J!) • Nested Templates • NewOrExisting Patterns Advanced Template Scenarios
- 23. Singapore, 2015Singapore, 2015 •Resource Groups • Linked Resources • Tags Organising with Azure Resource Manager
- 24. Singapore, 2015Singapore, 2015 App-CentricResource Groups and Templates My 3 Tier Template SQL DB App Service Virtual Machine
- 25. Singapore, 2015Singapore, 2015 App-centricResource Groups and Tier-centric Templates My DB Tier Template My Web Tier Template My VM Tier Template SQL DB App Service Virtual Machine
- 26. Singapore, 2015Singapore, 2015 App-centricResource Groups and Nested Templates ParentTemplate My Nested DB Tier Template My Nested Web Tier Template My Nested VM Tier Template SQL DB App Service Virtual Machine My 3 Tier Template
- 27. Singapore, 2015Singapore, 2015 Tier-centricResource Groups and Templates My DB Tier Template My Web Tier Template My VM Tier Template SQL DB App Service Virtual Machine
- 28. Singapore, 2015Singapore, 2015 ResourceTags Name-value pairs assigned to resources or resource groups Subscription-wide taxonomy Each resource can have up to 15 tags Tag by Environment, e.g. dev/test/prod Tag by Role, e.g. web/cache/DB Tag by Department, e.g. finance/legal Tag by Responsible party, e.g. Bob Tagging Tips
- 29. Singapore, 2015Singapore, 2015 Role-BasedAccess Control • Allows secure access with granular permissions • Assignable to users, groups, or service principals • Built-in roles make it easy to get started
- 30. Singapore, 2015Singapore, 2015 TwoKey Concepts Role Definitions Describes the set of permissions (e.g. read actions) Can be used in multiple assignments Role Assignments Associate role definitions with an identity (e.g. user/group) at a scope (e.g. resource group) Always inherited – subscription assignments apply to all resources
- 31. Singapore, 2015Singapore, 2015 Role-BasedAccess Control
- 32. Singapore, 2015Singapore, 2015 GranularScopes /subscriptions/{id}/resourceGroups/{name}/providers/…/sites/{site} subscription level – grants permissions to all resources in the sub resource group level – grants permissions to all resources in the group resource level – grants permissions to the specific resource
- 33. Singapore, 2015Singapore, 2015 ManyIaaS examples available https://github.com/Azure/azure- quickstart-templates More language examples available https://github.com/rjmax/ArmExamples https://github.com/olaskoog/ http://azure.microsoft.com/en- us/documentation/articles/resource-group-overview/ Deploy a template today!
- 34. Singapore, 2015 Don’t Forget! •Fill in your survey – it’s how we do better! • Don’t lose you badge! You need it for the Social Events • Grab the Speakers for a chat – they all have time for you! • Let everyone know what they are missing on Social Media #PowerShell #PSConfAsia Tweets (preferably with Pictures) win Prizes!!!! Photos of Marina Bay Credit: Alvin Lau