Microsoft Azure Automation
-
Upload
alexander-feschenko -
Category
Engineering
-
view
107 -
download
2
Transcript of Microsoft Azure Automation
1CONFIDENTIAL
Microsoft Azure Automation
NOVEMBER 25, 2016
Alex Feshchenko,SENIOR SOFTWARE ENGINEER
logo
2CONFIDENTIAL
AGENDA
Introduction to Automation1
Scheduling2
Gallery3
Authoring4
Azure Automation DSC5
Q&A6
INTRODUCTION TO AUTOMATION
NOVEMBER 25, 2016
Azure Automation valueA platform for automating management of resources and appsAzure, any cloud, and on-premises Process and configuration automation (runbooks, DSC)Change tracking and Update managementWindows and Linux
Eliminate time consuming, error prone, and repetitive tasksSave time while lowering overhead costsDeliver more reliable services, fasterIntegrate with the services you depend onGet easier configuration management with DSCManage system changes and updates
Gain visibility across workloads
Enable consistent control and compliance
Respond faster to security threats
Ensure availability of apps and data
Insight & Analytics
Protection & Recovery
Security & Compliance
Automation & Control
Operations Management and Security
Public and hosted clouds
Azure or AWS
On-premises datacenter
Process, Configuration, & Update AutomationAutomate management tasks with runbooksLet runbooks handle the creation, deployment, monitoring, and maintenance of Azure resources and third-party applications.
Assure OS Configuration with PowerShell DSCConsistently deploy, reliably monitor, and automatically update the desired state of your VMsPull service, Node Management, Reporting
Change TrackingIdentify software, file, registry, and service changes in your environment to help pinpoint operational issues.
Unified update managementPatch Insights – before, during, after, reliability, coordinationPatch Orchestration – sequencing, pre & post steps
AssetsSecure, global storeVariablesCredentialsConnectionsCertificatesModulesSchedules
Reuse across runbooksManage in a central location (create/edit/delete)Use within runbooks (e.g., Get-AutomationCredential)
Secrets encryptedAutomatic encryption (e.g., credential password)User-selected encryption (e.g., my encrypted variable)
Runbooks and AuthoringRunbooksPowerShellGraphicalPowerShell Workflow (textual and graphical)Bash, Python (2, 3) – coming soon
AuthoringTextual and Graphical authoring/testing within the Automation serviceOn-premises textual authoring with PowerShell ISE add-on
Integration & HybridIntegration ModulesPowerShell modules available to integrate with most important systemsLeverage existing PowerShell modules for Microsoft and 3rd-party systemsCreate your own PowerShell modules to integrate with additional systems
GalleryPublic gallery of Microsoft and customer runbooks for common tasksGet started automating quickly
Hybrid Runbook WorkersRun runbooks directly in your VMs – Azure-based, other cloud, or on-premises
Execute RunbooksUXManually kick off workflows
SchedulePerform tasks on recurring schedules
WebhookStart runbook from other services(ITSM, GitHub, …)
REST APIIntegrate from 3rd-party systems / web portals
PowerShell ModuleAzureRm.Automation
Run As accountsEasily authenticate to manage Azure resourcesGet started quickly.When you create a new Automation account you can have Run As accounts created too.Soon from the UX you will be able to manage creation and deletion of Run As accounts.
Azure Run AsService principal with certificateContributor roleManage ARM resources from runbooksAssets: AzureRunAsCertificate, AzureRunAsConnection
Azure Classic Run AsCertificateManage ASC resources from runbooksAssets: AzureClassicRunAsCertificate, AzureClassicRunAsConnection
DEMOAutomation UI
NOVEMBER 25, 2016
SCHEDULING
NOVEMBER 25, 2016
Automation SchedulingTake control of your automated resource management with schedulingConfigure, start, stop, and manage resources even when you aren’t there
Previously, scheduling offered daily and hourly schedules
New Features: • Weekly – day of week• Monthly – days of the month • Time zone support – allows adjustment for daylight savings
GALLERY
NOVEMBER 25, 2016
New Gallery featuresFind Microsoft & community examples that you can use to get started on new Automation tasks Automation runbook galleryPowerShell Gallery support Additional filtering capabilities
Import modules from PowerShell GalleryBrowse from AutomationImproved deployment from PowerShell Gallery
More Gallery runbooksCommunity continue to add useful runbooks to the gallery
AUTHORING
NOVEMBER 25, 2016
Authoring updatesGraphical runbooksNew type of graphical runbook based on native PowerShellImprovements to graphical authoring and runbook capabilities
PowerShell ISE add-onAuthor textual runbooks (PowerShell, PowerShell Workflow)Continued improvements in response to feedback
Start-AzureRmAutomationRunbook cmdletAdded –Wait and –MaxWaitSeconds parametersParent runbook can now wait for child runbook to finish and send back outputEnables any runbook type to call any runbook type and get back results
More Gallery runbooksCommunity continue to add useful runbooks to the gallery
Graphical authoring updatesGraphical PowerShell runbookNew type of graphical runbook based on native PowerShellAll advantages of native PowerShell over PowerShell WorkflowStarts fast, full objects, simpler authoring
Graphical authoring improvementsObject output properties available at design timeError links & convert exception to errorCanvas restyle for readabilityWarnings for common design requirements
Graphical runbook SDK updateRelease latest version of the public-preview SDK
Uses for different runbook typesTextual runbooks• Distinct programming model• Script authoring model• Lower-level language, so more versatile• Can use existing scripts• Familiar to PowerShell (Python, Bash) users• Designer is cloud based or client (ISE)
Graphical runbooks• Distinct programming model• Visual insert-link-configure authoring model• Focus on how data flows through the process• Can visualize IT processes and systems
affected• Higher-level language, can increase
productivity• Include PowerShell script as needed• Encourages modular programming• Designer is cloud based
DEMO
NOVEMBER 25, 2016
Automating app deployment
POWERSHELL DSC OVERVIEW
NOVEMBER 25, 2016
PS DSC configuration managementSimplifies configurationPrevents configuration driftFlexible deployment optionsEnables continuous deployment
Development Test Production
Components & phasesAuthoring Phase(may include imperative as well as declarative code)
Staging Phase- Fully declarative configuration
representation using DMTF standard MOF instances
- Configuration is calculated for all nodes
“Make it So” Phase(declarative configuration is reified through imperative providers)
Powershell
3rd party languages and
tools
Configuration staging area
(contains DSC data)
Local configuration store
Parser and dispatcher
Resources
Push ModelAuthoring Phase(may include imperative as well as declarative code)
Staging Phase- Fully declarative configuration
representation using DMTF standard MOF instances
- Configuration is calculated for all nodes
“Make it So” Phase(declarative configuration is reified through imperative providers)
Powershell
3rd party languages and
tools
Configuration staging area
(contains DSC data)
Local configuration store
Parser and dispatcher
Resources
Pull ModelAuthoring Phase(may include imperative as well as declarative code)
Staging Phase- Fully declarative configuration
representation using DMTF standard MOF instances
- Configuration is calculated for all nodes
“Make it So” Phase(declarative configuration is reified through imperative providers)
Powershell
3rd party languages and
tools
Pull server (contains DSC
data)
Local configuration store
Parser and dispatcher
Resources
INTRODUCING AZURE AUTOMATION DSC
NOVEMBER 25, 2016
Azure Automation DSCPS DSC pull / reporting service hosted in the cloudManage physical hosts and VMs in any cloud or on-premises Windows or Linux
Part of the Azure Automation ServicePS DSC configuration, node configuration, node and resources managementImportAuthoringCompilingVersioningDistribution to nodesReportingEasy node onboarding
Azure Automation DSC
Configuration (script)
Authoring
DSC resources
Node config (MOF)
Zip
Staging
Reports REST Endpoint
Azure VM Physical server
On-prem
DEMO
NOVEMBER 25, 2016
On-boarding and configuring VMs
Powershell DSC and runbooks – better together
Use PS DSC to declaratively configure VMs / hosts
Use runbooks to orchestrate complex processes across systems
QUESTIONS
NOVEMBER 25, 2016