Azure

portal

Install Azure Module on Windows Server 2016

Install-PackageProvider -Name NuGet
Install-Module Azure

At least that's what I had to do

Install Powershell on Linux Mint

curl https://packages.microsoft.com/keys/microsoft.asc | sudo apt-key add -
curl https://packages.microsoft.com/config/ubuntu/16.04/prod.list | sudo tee /etc/apt/sources.list.d/microsoft.list
sudo apt-get update
sudo apt-get install powershell -y

Azure ActiveDirectory

admin entraId

Creating a new User in AzureAD

Connect-AzureAD
$PasswordProfile = New-Object -TypeName Microsoft.Open.AzureAD.Model.PasswordProfile
$PasswordProfile.Password = "<Password123>"
New-AzureADUser -DisplayName "Honey" -UserPrincipalName "[email protected]"  -PasswordProfile $PasswordProfile -AccountEnabled $true -MailNickName "Honey"

Change a Users Password

 Set-AzureADUserPassword -ObjectId (Get-AzureADUser -Filter "Displayname eq 'Honey'").ObjectId

Creating a new Virtual Machine in Azure

Resource deployment

$resourceGroupName = "string"
$deploymentName = "string"
$location = "centralus"

New-AzureRmResourceGroup -Name $resourceGroupName -Location $location
New-AzureRmResourceGroupDeployment -Name $deploymentName -ResourceGroupName $resourceGroupName -TemplateFile "C:\Users\<path>\azuredeploy.json"

or

az group create --name $resourceGroupName --location $region  --subscription $subscriptionId

Create and verify Storage Account

az account show --query [name,id]
$storageAccountName="string"
$region="eastus"
az storage account create --resource-group $resourceGroupName --name $storageAccountName --kind StorageV2 --sku Standard_ZRS --output none
az storage account list --resource-group $resourceGroupName

Create and verify SMB Fileshare

$shareName="mfesmbshare
az storage share-rm create --resource-group $resourceGroupName --storage-account $storageAccountName --name $shareName --access-tier "TransactionOptimized" --quota 1024 --output none
az storage share list --account-name $storageAccountName

Getting Started

Create Resources Group create Vnet (Firewall Manager costs 20$/day) Create HostPool Domain to join choose entraID Free trial can't request quota increase!

Azure AVD

Application Groups host Desktops and other Applications VMs in Session host need to be assigned to users Create Workspace in AVD Dashboard

  1. Host Pool

  2. Session Hosts (VMs etc)

  3. Create EntraID Users 3.1 give "Desktop Virtualization User" to user in "Azure role assignments" 3.2 Admin???

  4. Assign Sessions to User in Host Pool

  5. Create Workspace in AVD EntraId -> User -> MyVidUser No Role Assignments (is that right?)

RDP Properties

Host Pool -> RDP Properties -> Advanced

drivestoredirect:s:*;audiomode:i:0;videoplaybackmode:i:1;redirectclipboard:i:1;redirectprinters:i:1;devicestoredirect:s:*;redirectcomports:i:1;redirectsmartcards:i:1;usbdevicestoredirect:s:*;enablecredsspsupport:i:1;redirectwebauthn:i:1;use multimon:i:1;enablerdsaadauth:i:0

Host Pool -> Access control (IAM)

My Vdi Role Assignment == Desktop Virtualization User

Azure Virtual Desktop | Host pools

  • 2 Total machines, it can connect to Session Host 1 is assinged to myVdi user

Application Group

Application Group is Desktop has User assigned to it has SessioNDesktop in Application

Workspace

contains Application Group Desktop

PreviousAmazon WebservicesNextGCP

Last updated