Azure Automation and Managed Identities
HTML-код
- Опубликовано: 30 июл 2024
- Azure Automation uses Run As accounts to authenticate and manage resources in an Azure subscription. In this video, we review using Managed Identities in Azure Automation (preview) to control access to Azure resources. The video then provides an Azure Automation Tutorial on creating an Azure Automation account, configuring a Managed Identity, setting RBAC permissions, and then creating a runbook that shuts down Azure Virtual Machines on a tag value.
Links
GitHub Code:
github.com/tsrob50/AzureAutom...
That was easier than I thought, thanks for sharing!
Thanks a lot, its Gr8 Video and so simple to understand.
Thank you very much for this. This really explained it well for me!
Thanks, glad to hear!
Simple and great, thank you
Great detailed video, thank you
Thank you!
Lov you Travis, you save me
Thanks Travis Roberts. Great video.
Great!
Ty Travis! How do you suggest using automation account for taking care password expiration of SA when joined to AD (as computer object)? That will require to run as a user and not as SPN (with MSI)
Update-AzStorageAccountADObjectPassword `
-RotateToKerbKey kerb2 `
-ResourceGroupName "00000-xx" `
-StorageAccountName "xxxxsa"
Hi Travis, great video. Is it possible to create an azure vm using CLI from my TP using managed identity?
Maybe useful for someone, If you are using a hybrid worker VM group to run your runbooks, the VM itself needs to have the managed identity enabled and rbac configured, NOT on the automation account.
Any advice on connecting to graph with this? Added the Microsoft.Graph.Authentication from the gallery and using Import-Module 'Microsoft.Graph.Authentication' but it fails to find the module when importing. Tried so many things now.
is azure rm power shell module are not working now ? that's why you used new AZ modules or your script is based on new AZ module ?
Great video Travis! Btw I am trying to get the object id from the managed Identity from the Automation account using powershell.
How can I do this ?
I use:
$AzureContext = (Connect-AzAccount -Identity).context
but how can I retrieve the Managed Identity objectID ?
Hi Travis, can Azure automation account be used to run a script at the OS level of a VM?
How to start VMS with the managed Identity.?
Can we have link for auto-start?
I could not able to find link for code, could you please assist?
Can't we just use "stop-AzVM" command?