Introduction
This is a two day hack to get you skipped up in the various aspects of using Azure Arc to onboard VMs outside of Azure and leverage the management plane and range of services to transform how you manage your hybrid estates.
The hack is used in the UK to enable partners, but you are absolutely free to reuse the content yourself as it is 100% public. The hack is a challenge hack, so each section gives you a number of challenges to meet, plus a set of links for your reference. As you complete each section you will screen share with your proctor to confirm the success criteria has been met before moving on to the next section.
Please make sure that you have met the prereqs before attending.
Agenda
| Time | Description |
|---|---|
| 09:30 | Hack intro |
| 09:45 | Arc for Servers Overview |
| Manual Onboarding | |
| Azure Policy | |
| Scale Onboarding | |
| 13:00 | Monitoring Agents Update |
| Monitoring | |
| 15:30 | Day 1 wrap up |
| 09:30 | Hybrid Management Overview |
| Management | |
| Governance | |
| 13:00 | Azure Stack HCI & Azure Arc |
| Integration | |
| 15:30 | Feedback & wrap up |
The sessions with times will be in the General channel in Teams. When you are hacking in your teams then start a meeting directly within your private channels.
Content
Manual Onboarding
Work through the first challenge, onboarding a pair of "on prem" machines into Azure and adding agents.
Azure Policy
Use Azure Policy to automate agent deployments and tagging for your Azure Arc Virtual Machines.
Scale Onboarding
Onboarding multiple Linux and WIndows servers with a service principal, then automate connecting with the azcmagent.
Monitoring
Configure the new Azure Monitoring Agent and Data Collection Rules. Optionally integrate with Azure Security Center and Azure Sentinel.
Management
Create a management baseline for the connected machines. Enable update management and inventory.
Governance
Use Azure Policy and the Guest Configuration policy definitions to govern your resources and prove compliance.
Integration
Each connected machine has an identity. Create a Key Vault and add a secret. Configure the Run the commands to pull the secret from the Key Vault from your on prem VM.
Help us improve
Azure Citadel is a community site built on GitHub, please contribute and send a pull request
Make a change