Create and encrypt a new Linux VMSS with jumpbox

Sidst opdateret: 19-10-2017

This template deploys a Linux VMSS using the latest Linux image, adds data volumes, and then encrypts the data volumes of each Linux VMSS instance. It also deploys a jumpbox with a public IP address in the same virtual network as the Linux VMSS instances with private IP addresses. This allows connecting to the jumpbox via its public IP address, and then connecting to the Linux VMSS instances via private IP addresses.

Denne ARM-skabelon (Azure Resource Manager) blev oprettet af et medlem af communityet og ikke af Microsoft. Hver ARM-skabelon er givet i licens til dig under en licensaftale med ejeren af skabelonen og ikke med Microsoft. Microsoft kan ikke gøres ansvarlig for de ARM-skabeloner, der leveres og gives i licens af communitymedlemmer, og vi undersøger dem ikke for sikkerhed, kompatibilitet eller ydeevne. ARM-skabeloner fra communytiet understøttes ikke af noget eller nogen Microsoft-supportprogram eller -tjeneste, og de stilles til rådighed, SOM DE ER, uden nogen former for garanti.

Parametre

Parameternavn Beskrivelse
vmssName String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended.
vmSku Size of VMs in the VM Scale Set (7GB or more RAM suggested for Linux)
imagePublisher Publisher of OS image
imageOffer OS image offer
imageSku OS image SKU
osVersion OS Version. Defaults to latest version of specified SKU.
instanceCount Number of VM instances (100 or less).
adminUsername Admin username on all VMs.
adminPassword Admin password on all VMs.
keyVaultName Name of the KeyVault to place the volume encryption key
keyVaultResourceGroup Resource group of the KeyVault
keyEncryptionKeyURL URL of the KeyEncryptionKey used to encrypt the volume encryption key. The Valut is assumed to be in keyVaultResourceGroup
keyEncryptionAlgorithm Key encryption algorithm used to wrap with KeyEncryptionKeyURL
volumeType Type of the volume to perform encryption operation (Linux VMSS only supports Data)
forceUpdateTag Pass in an unique value like a GUID everytime the operation needs to be force run
customData Command string to run as part of provisioning

Brug skabelonen

PowerShell

New-AzureRmResourceGroupDeployment -Name <deployment-name> -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-encrypt-vmss-linux-jumpbox/azuredeploy.json
Installér og konfigurer Azure PowerShell

Kommandolinje

azure config mode arm
azure group deployment create <my-resource-group> <my-deployment-name> --template-uri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-encrypt-vmss-linux-jumpbox/azuredeploy.json
Installér og konfigurer Azure-kommandolinjegrænsefladen til flere platforme