If you run in an environment where you need to track changes to Tags on Resource Groups in Azure then you may find this PowerShell snippet useful as code to drop into a Runbook. The snippet will enumerate all Resource Groups in a Subscription (we assume you are already logged into the Subscription you want … Continue reading Read Tags from Azure Resource Groups and track using Table Storage
Category: Powershell
Creating Azure AD B2C Service Principals with PowerShell
I've been lucky enough over the last few months to be working on some cool consumer-facing solutions with one of my customers. A big part of the work we've been doing in building Minimum Viable Product (MVP) solutions to allow us to quickly test concepts in-market using stable, production ready technologies. As these are consumer … Continue reading Creating Azure AD B2C Service Principals with PowerShell
Using Active Directory Security Groups to Grant Permissions to Azure Resources
The introduction of the Azure Resource Manager platform in Azure continues to expose new possibilities for managing your deployed resources.
One scenario that you may not be aware of is the ability to use scoped RBAC role assignments to grant limited rights to Azure AD-based users and groups.
We know Azure provides us with many built-in RBAC roles, but it may not be immediately obvious that you can control their assignment scope.
What do I mean by this?
Simply that each RBAC role (including custom ones you create) can be used at various levels within Azure starting at the Subscription level (i.e. applies to anything in the Subscription) down to a Resource (i.e. applies just to one particular resource such as a Storage Account). Role assignments are also cascading – if I assign “Owner” rights to a User or Group at the Subscription level then they have that role…
View original post 731 more words
Easy Debugging of PowerShell DSC for Azure Virtual Machines
I've been doing a lot of PowerShell DSC on Azure VMs recently, so I thought I'd share my experience in debugging custom DSC Modules when working in Azure. My blog entry is over on the Kloud blog so head on over and have a read.
Setting Instance Level Public IPs on Azure VMs
Since October 2014 it has been possible to add a public IP address to a virtual machine in Azure so that it can be directly connected to by clients on the internet. This bypasses the load balancing in Azure and is primarily designed for those scenarios where you need to test a host without the … Continue reading Setting Instance Level Public IPs on Azure VMs
Microsoft Ignite 2015 Event Review
Frank Sinatra sang "My Kind of Town (Chicago is)" and Ol' Blue Eyes certainly knew a great town when he saw one! The first ever Microsoft Ignite was held just this past week in Chicago at the McCormick Place Convention Centre (the largest in North America) and I was lucky enough to attend with the … Continue reading Microsoft Ignite 2015 Event Review
Microsoft Azure: 2014 Year in Review
What a massive year it's been for Microsoft's Azure public cloud platform. Running the Azure Sydney User Group this year has been great fun and seeing the growing local interest has been fantastic. The focus from Microsoft has really changed in this space and has been clearly signalled with the change in name of Azure … Continue reading Microsoft Azure: 2014 Year in Review
How to add a Site-to-Site VPN to an Azure Virtual Network after setup.
I have recently been working on a couple of engagements that involve utilising the site-to-site connectivity features of Windows Azure Virtual Networks. On one engagement we went through the setup of the Virtual Network early on before the customer's network team had gotten involved and we just skipped the setup of the site-to-site connection at … Continue reading How to add a Site-to-Site VPN to an Azure Virtual Network after setup.
Feature Request: Generate PowerShell Scriptlets From the Azure Management Portal
I was at a customer the other day wrapping a successful project delivered on Windows Azure when one the customer's team suggested a great idea - why not generate PowerShell scriptlets from actions completed within the Azure Mangement Portal so that you can re-issue the command at any future point (or in a different Azure … Continue reading Feature Request: Generate PowerShell Scriptlets From the Azure Management Portal
Secure Remote Management Studio access to SQL Server on Azure IaaS
If you have ever provisioned a SQL Server instance running on Azure IaaS and not used a VPN solution you will find that by default you are unable to connect to it from a local Management Studio instance. By default all Virtual Machines are wrapped by a Cloud Service which behaves to a degree like … Continue reading Secure Remote Management Studio access to SQL Server on Azure IaaS