You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@brooklyn.apache.org by dr...@apache.org on 2017/06/12 12:36:55 UTC
[1/2] brooklyn-docs git commit: Adding docs for Windows on Azure ARM
Repository: brooklyn-docs
Updated Branches:
refs/heads/master 4c4102703 -> 8f99754af
Adding docs for Windows on Azure ARM
Project: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/repo
Commit: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/commit/695c8fa1
Tree: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/tree/695c8fa1
Diff: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/diff/695c8fa1
Branch: refs/heads/master
Commit: 695c8fa103b02ad6d9d7041db49db16cf1150c86
Parents: c20b747
Author: Yavor Yanchev <ya...@yanchev.com>
Authored: Mon Jun 12 14:21:10 2017 +0300
Committer: Yavor Yanchev <ya...@yanchev.com>
Committed: Mon Jun 12 14:21:10 2017 +0300
----------------------------------------------------------------------
guide/locations/_azure-ARM.md | 82 ++++++++++++++++++++++++++++++++++++++
1 file changed, 82 insertions(+)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/brooklyn-docs/blob/695c8fa1/guide/locations/_azure-ARM.md
----------------------------------------------------------------------
diff --git a/guide/locations/_azure-ARM.md b/guide/locations/_azure-ARM.md
index a08e2ad..3f4699b 100644
--- a/guide/locations/_azure-ARM.md
+++ b/guide/locations/_azure-ARM.md
@@ -95,6 +95,88 @@ The loginUser can be anything, as long as it's specified.
The `overrideAuthenticateSudo: true` key tells Apache Brooklyn that default on Azure images do not have passwordless sudo
configured by default.
+#### Using Windows on Azure ARM
+
+This section contains material how to create a Windows location on Azure ARM. Some of the used parameters are explained in the section above.
+
+Windows on Azure ARM requires manually created [Azure KeyVault](https://docs.microsoft.com/en-us/azure/key-vault/key-vault-get-started)
+Azure KeyVaults can be created [via Azure cli](https://docs.microsoft.com/en-us/azure/key-vault/key-vault-manage-with-cli2#create-a-key-vault)
+or [Azure portal UI](https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-keyvault-parameter). KeyVault's secret is a key
+stored in protected .PFX file. It needs to be prepared upfront or created with the [Add-AzureKeyVaultKey](https://docs.microsoft.com/en-us/powershell/module/azurerm.keyvault/add-azurekeyvaultkey?view=azurermps-4.0.0) cmdlet.
+
+* `osFamily: windows` tells Apache Brooklyn to consider it as a Windows machine
+
+* `useJcloudsSshInit: false` tells jclouds to not try to connect to the VM
+
+* `vmNameMaxLength: 15` tells the cloud client to strip the VM name to maximum 15 characters.
+ This is the maximum size supported by Azure Windows VMs.
+
+* `winrm.useHttps` tells Apache Brooklyn to configure the WinRM client to use HTTPS.
+
+* `secrets` Specifies the KeyVault configuration
+
+ `sourceVault` Resource `id` of the KeyVault
+
+ `vaultCertificates` `certificateStore` has to use `My` as a value.
+ KeyVault's `certificateUrl`. An URI to the [Secret Identifier](https://docs.microsoft.com/en-us/rest/api/keyvault/about-keys--secrets-and-certificates#BKMK_DataTypes)
+
+* `windowsConfiguration`
+
+ `provisionVMAgent` whether Azure to install an agent on the VM. It must be set to `true`
+
+ `winRM` It defines the `listeners` section. If `listeners` is `https` then `certificateUrl` needs to be set. Its value must match the one of `secrets`'s `certificateUrl`.
+
+* `additionalUnattendContent` Additional content. Normally it can be defined as `null`
+
+* `enableAutomaticUpdates` whether to enable the automatic windows updates. It can be set to `false`, if automatic updates are not desired
+
+###### Sample Windows Blueprint
+
+Placeholders surrounded with `<>` have to be replcaced with their respective values.
+
+{% highlight yaml %}
+brooklyn.catalog:
+ id: my-azure-arm-location
+ name: "My Azure ARM location"
+ itemType: location
+ item:
+ type: jclouds:azurecompute-arm
+ brooklyn.config:
+ identity: <Application-id>
+ credential: <Password>
+ endpoint: https://management.azure.com/subscriptions/<Subscription-id>
+ oauth.endpoint: https://login.microsoftonline.com/<Tenant-id>/oauth2/token
+ jclouds.azurecompute.arm.publishers: MicrosoftWindowsServer
+ jclouds.azurecompute.operation.timeout: 120000
+
+ winrm.useHttps: true
+ osFamily: windows
+ imageId: <Azure_location>/MicrosoftWindowsServer/WindowsServer/2012-R2-Datacenter
+ region: <Azure_location>
+ vmNameMaxLength: 15
+ useJcloudsSshInit: false
+ destroyOnFailure: false
+
+ templateOptions:
+ overrideLoginUser: brooklyn
+ overrideLoginPassword: "secretPass1!"
+ resourceGroup: <ResourceGroup-name>
+ secrets:
+ - sourceVault:
+ id: "/subscriptions/<Subscription-id>/resourceGroups/<ResourceGroup>/providers/Microsoft.KeyVault/vaults/<KeyVault-name>"
+ vaultCertificates:
+ - certificateUrl: "<KeyVault-uri>"
+ certificateStore: My
+ windowsConfiguration:
+ provisionVMAgent: true
+ winRM:
+ listeners:
+ - protocol: https
+ certificateUrl: "<KeyVault-uri>"
+ additionalUnattendContent: null
+ enableAutomaticUpdates: true
+{% endhighlight %}
+
#### Known issues
There are currently two known issues with Azure ARM:
[2/2] brooklyn-docs git commit: This closes #196
Posted by dr...@apache.org.
This closes #196
Project: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/repo
Commit: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/commit/8f99754a
Tree: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/tree/8f99754a
Diff: http://git-wip-us.apache.org/repos/asf/brooklyn-docs/diff/8f99754a
Branch: refs/heads/master
Commit: 8f99754afc57ebb75d5c6a7c359684e24ac6d8ae
Parents: 4c41027 695c8fa
Author: Duncan Godwin <dr...@googlemail.com>
Authored: Mon Jun 12 13:36:45 2017 +0100
Committer: Duncan Godwin <dr...@googlemail.com>
Committed: Mon Jun 12 13:36:45 2017 +0100
----------------------------------------------------------------------
guide/locations/_azure-ARM.md | 82 ++++++++++++++++++++++++++++++++++++++
1 file changed, 82 insertions(+)
----------------------------------------------------------------------