Lewati Navigasi

Templat Azure Quickstart saat ini tersedia dalam bahasa Inggris

Create and encrypt a new Windows VMSS with jumpbox

Terakhir diperbarui: 14/05/2021

This template allows you to deploy a simple VM Scale Set of Windows VMs using the lastest patched version of serveral Windows versions. This template also deploys a jumpbox with a public IP address in the same virtual network. You can connect to the jumpbox via this public IP address, then connect from there to VMs in the scale set via private IP addresses.This template enables encryption on the VM Scale Set of Windows VMs.

Templat Azure Resource Manager ini dibuat oleh anggota komunitas dan bukan oleh Microsoft. Setiap templat Resource Manager dilisensikan kepada Anda berdasarkan perjanjian lisensi oleh pemiliknya, bukan Microsoft. Microsoft tidak bertanggung jawab atas templat Resource Manager yang disediakan dan dilisensikan oleh anggota komunitas dan tidak menyaring keamanan, kompatibilitas, atau performa. Templat Community Resource Manager tidak didukung di bawah program atau layanan dukungan Microsoft apa pun, dan tersedia SEBAGAIMANA ADANYA tanpa jaminan apa pun.

Parameter

Nama Parameter Deskripsi
vmssName String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended.
vmSku Size of VMs in the VM Scale Set.
imagePublisher Publisher of OS image.
imageOffer OS image offer
imageSku OS image SKU
location Default location
osVersion OS Version. This will pick a fully patched image of this given OS version. Example values: 2008-R2-SP1, 2012-Datacenter, 2012-R2-Datacenter.
instanceCount Number of VM instances (100 or less).
adminUsername Admin username on all VMs.
adminPassword Admin password on all VMs.
keyVaultName Name of the KeyVault to place the volume encryption key
enabledForDeployment Specifies whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault.
enabledForDiskEncryption Specifies whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys.
enabledForTemplateDeployment Specifies whether Azure Resource Manager is permitted to retrieve secrets from the key vault.
keysPermissions Specifies the permissions to keys in the vault. Valid values are: all, encrypt, decrypt, wrapKey, unwrapKey, sign, verify, get, list, create, update, import, delete, backup, restore, recover, and purge.
secretsPermissions Specifies the permissions to secrets in the vault. Valid values are: all, get, list, set, delete, backup, restore, recover, and purge.
skuName Specifies whether the key vault is a standard vault or a premium vault.

Menggunakan templat

Windows PowerShell

New-AzResourceGroup -Name <resource-group-name> -Location <resource-group-location> #use this command when you need to create a new resource group for your deployment
New-AzResourceGroupDeployment -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/quickstarts/microsoft.compute/encrypt-vmss-windows-jumpbox/azuredeploy.json
Menginstal dan mengonfigurasi Azure PowerShell

Baris perintah

az group create --name <resource-group-name> --location <resource-group-location> #use this command when you need to create a new resource group for your deployment
az group deployment create --resource-group <my-resource-group> --template-uri https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/quickstarts/microsoft.compute/encrypt-vmss-windows-jumpbox/azuredeploy.json
Menginstal dan Mengonfigurasi Azure Cross-Platform Command-Line Interface