Presentation is loading. Please wait.

Presentation is loading. Please wait.

6/10/2018 2:34 PM Dive deep into the VM Marketplace in Azure: Single VM images, solution templates, and VM extensions Daniel Sol Program Manager, Azure.

Published byJohnathan Gaines Modified over 6 years ago

Similar presentations

Presentation on theme: "6/10/2018 2:34 PM Dive deep into the VM Marketplace in Azure: Single VM images, solution templates, and VM extensions Daniel Sol Program Manager, Azure."— Presentation transcript:

1 6/10/2018 2:34 PM Dive deep into the VM Marketplace in Azure: Single VM images, solution templates, and VM extensions Daniel Sol Program Manager, Azure Compute Simon Davies Program Manager, Azure Resource Manager © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Objectives Illustrate how to and use Azure Virtual Machines, Virtual Machine extensions and ARM templates to provision applications Describe common issues that you may encounter and provide approaches to solve these Discuss Solution Templates, Managed Applications and Service Catalog

3 Agenda VM Customization with and without Extensions
Marketplace VMs – key differences from Platform VMs Solution Templates and Managed Applications Publishing Solution Templates and Managed Applications Create UI Definition Azure AD Managed Service Identity Summary

4 VM Customizations with Extensions
6/10/2018 2:34 PM VM Customizations with Extensions CLI/REST ARM 1 What are extensions? What are the benefits? How do extensions work? 7 Status Blob CRP 6 2 6 Fabric Custom Script Extn Post Extn Provisioning Status GSD 6 5 3 VM Agent Windows Before User Action : Add Custom Script Extension (CSE) After © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

5 Extensions Deep Dive Protected Settings Troubleshooting
Agent logs: C:\WindowsAzure\Logs Plugin Logs: C:\WindowsAzure\Logs\Plugins\Microsoft.Compute.CustomScriptExtension\1.9 Extension Packages: C:\Packages\Plugins Example : Custom Script downloaded file(s): C:\Packages\Plugins\Microsoft.Compute.CustomScriptExtension\1.9\Downloads\0 Windows Protected Settings SecureStrings in ARM CustomScript Troubleshooting Agent Extension Proxy Support for Extensions Depends CSE (curl) Windows Proxy UDR Max Extension Execution Time Most 20mins For all max 90mins, common for malleable extensions How you can tell? Agent logs: /var/log/waagent.log Extension Logs: /var/log/azure/Microsoft.OSTCExtensions.CustomScriptForLinux/ / Extension Packages: /var/lib/waagent/ Example : Custom Script download file(s): /var/lib/waagent/Microsoft.OSTCExtensions.CustomScriptForLinux /download/0 Linux

6 Extensions Deep Dive Connectivity Extension upgrades Minor
6/10/2018 2:34 PM Extensions Deep Dive Connectivity Agent connects to :32526 Host Plugin handles agent only traffic, if blocked outside of a guest VM FW. Redirect for traffic to (except extension traffic) via the hosts. Linux Agent >=2.2.7 WinGA >= Testing Preview NSG Storage Tags : Stay Tuned CSE - But I really don’t want to use Azure Storage! FileURI’s is Optional Local file storage Extension upgrades Minor © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 Extension Sequencing Single VMs VMSS ‘Depends on’ in ARM
No sequencing option, but for CSE, you can poll for completion, before you start on another resource (Win Only). Use configuration management tool like Azure Automation(DSC)/OMS, DSC, Chef, Puppet, Ansible) Containerize app, so VM extension just installs container host, manage app from container orchestrator

8 Running Multiple Scripts
Options Using Custom Script Extension Using VM Provisioning Time Script, and optional CustomScript. Multiple Scripts using Custom Script Extension Master & Slave Script model Waterfall model Create PowerShell Tasks Create Cron Jobs Alternative, use DSC Considerations Orchestration Error handling Retry logic You get status reporting for free

9 Demo 0 : MultiScriptCSE

10 VM Customization on Startup
VM Creation, 2 parts: Provisioning Code – Setting up SSH Keys / UN’s, Certs, Disks, Network etc. VM Agent Code – CustomData, extension provisioning Customizing in VM Provisioning Code If no external dependencies, it is fast, reliable, and little variance on deployment times. Multiple ways to achieve this using different technology Differences in behavior, for example impact to provisioning time. You need to implement a ‘dial home’ mechanism for script status. Troubleshooting difficulty can vary. Does not require extensions.

11 Customization on Startup : Windows
Injection into Unattend.xml AutoLogon FirstLogonCommands Troubleshooting Build your own logging Use non quiet commands Use portal perf graphs C:\Windows\Panther\UnattendGC C:\Windows\Panther\unattend.xml Impact to VM provisioning time or status : NONE

12 Customization on Startup : Windows
Demo Steps: Update the OS profile Autologon Run script on remote share Why this pattern? Example :

13 Demo 1 : Customization on Startup - Windows

14 Customization on Startup : Linux/CustomData
6/10/2018 2:34 PM Customization on Startup : Linux/CustomData Use CustomData parameter to execute a script or cmd. Executed by the Linux Agent before extension This does not apply to Ubuntu/CoreOS) You need to customize the image This also allows you to bake in a script (reduce external dependency) Troubleshooting /var/log/waagent.log /var/lib/waagent/CustomData /var/lib/cloud/instance/user-data.txt Script failure does not cause a VM provisioning failure Impact to VM provisioning time or status : YES – Max 40mins! Or © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

15 Customization on Startup : Linux/CustomData
Steps Create VM - bake in script Modify agent Deprovision VM Create image from VM Create new VM from image 1 2 5 Note : not encrypted Creating Linux Custom Images :

16 Customization on Startup : Linux/CustomData

17 CustomData on Windows You can pass customData command into ARM template BUT Windows will not execute it! Consider Create Custom Image with startup task and script that looks commands or parameters in : %SYSTEMDRIVE%\AzureData\CustomData.bin Needs to be Base64 encoded Will be decoded automatically Only for customized images Impact to VM provisioning time or status : NONE

18 Customization on Startup : Linux/Cloud-init
Cloud-init – open source provisioning project, supported in Azure by Ubuntu / CoreOS Configure VM using cloud-config, module support RunCmds / Packages / Dial Home Use CustomData to pass in Base64 encoded cloud-config Troubleshooting ./var/lib/waagent/ovf-env.xml /var/log/cloud-init.log Impact to VM provisioning time or status : NONE

19 Customization on Startup : Linux/Cloud-init
Demo Steps Examine a cloud-config Use cloud-config to provision a VM, see different modules Examine cloud-config troubleshooting For more details :

20 Customization on Startup : Linux/Cloud-init

21 Summary Agent and Extension framework Extension deep dive
Protected settings, troubleshooting etc. Customize VMs without extensions

22 Marketplace VM Images

23 Marketplace VMs Differences that may impact deployment
Plan Information Creation requires provision of plan information as part of the PUT request to ARM Commerce Marketplace VMs may have commerce constraints e.g. Azure account locations, Subscription Types, Subscription permissions, payment instrument requirements Acceptance of Terms Creation outside of the portal requires acceptance of terms before deployment

24 Demo: Finding Template Deployment Errors

25 Plan Information Status Code: BadRequest
Error Code: ResourcePurchaseValidationFailed Error Message: Offer with PublisherId: <publisher> and OfferId: <offer> not found. If this offer has been created recently, please allow upto 30 minutes for this offer to be available for Purchase. If error persists, contact support Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: Plan with PublisherId: <publisher>, OfferId: <offer> and PlanId: <name> not found. If this plan has been created recently, please allow upto 30 minutes for this plan to be available for Purchase. If error persists, contact support Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: The resource operation completed with terminal provisioning state 'Failed'. Error Details: Code: VMMarketplaceInvalidInput Message: Creating a virtual machine from Marketplace image requires Plan information in the request. OS disk name is <OS_Disk_Name>'. Issue: Bad or missing Plan information:

26 Demo: Determining if Plan is needed

27 Commerce Issues Status Code: BadRequest
Error Code: ResourcePurchaseValidationFailed Error Message: AccountRetrievalFailed This Enterprise enrollment is not enabled to purchase from Marketplace. Please contact your Enterprise Administrator to change your enrollment settings Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: CustomerDeniedServicePlanAccess The azure subscription Id (<subscription-id>) is not allowed to purchase this offer Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: We could not find a credit card on file for your azure subscription. Please make sure a valid credit card is associated to your Azure subscription. Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: CustomerDeniedServicePlanAccess The Offer is not sold in the account market (<country code>).

28 Acceptance of Terms Status Code: BadRequest Error Code: ResourcePurchaseValidationFailed Error Message: User failed validation to purchase resources. Error message: 'Legal terms have not been accepted for this item on this subscription. To accept legal terms, please go to the Azure portal ( and configure programmatic deployment for the Marketplace item or create it there for the first time’ Issues :Acceptance of terms is enabled in the portal Challenges: Solution templates depending hidden on VM Images Customer Deploys without using the portal Partner solution needs to create instances of the VM

29

30

31 Demo: Acceptance of terms API

32 Solution Templates and Managed Applications

33 Azure Marketplace Applications
Can be solution templates or managed applications (preview) Combination of ARM Template(s), other assets (scripts, config etc.) and an Azure Portal User Interface Definition (createUIDefinition.json) Managed applications are managed by ISV, Service Provider Storage Network Publish UIDef VM Application Package (ZIP) Marketplace

34 Azure Service Catalog Applications
Managed Applications only Combination of ARM Template(s), other assets (scripts, config etc.) and an Azure Portal User Interface Definition (createUIDefinition.json) Managed by IT or application publisher Storage Network Publish UIDef VM Application Package (ZIP) Service Catalog

35 Demo: Creating and Publishing a Managed Application

36 CreateUIDefinition for Managed Applications
Provides a set of declarative UI elements and functions to collect user input e.g TextBox, UserName, Credentials, IP Address, location() Inputs are grouped in steps Basics step with optional custom step, each step is a blade in the UI. Output section defines the names and values of parameters used to deploy a template Full details at

37 Demo: Building a UI Definition

38 Azure AD Managed Service Identity
Gives an Azure resource an automatically provisioned and managed identity Allows the Azure resource to use the identity to access services (e.g. ARM, Key Vault) For VMs and VMSS this enables code running in the VM to be able to access and use Azure Resources without having to be given or store secrets

39 Demo: Managed Service Idenity

40 Summary Azure Platform and Marketplace VMs can be customized at deployment time Used within ARM Templates and CreateUIDefinition applications can be created and published for customer consumption Demos will be available at

41 Please evaluate this session
Tech Ready 15 6/10/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

42 6/10/2018 2:34 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "6/10/2018 2:34 PM Dive deep into the VM Marketplace in Azure: Single VM images, solution templates, and VM extensions Daniel Sol Program Manager, Azure."

Similar presentations

TechReady 16 5/10/2018 Day 2, Session 4 Reaching the Summit: ITIL-integrated Self-Service in the Hybrid Cloud © 2013 Microsoft Corporation. All rights.

TechReady 16 5/10/2018 Day 2, Session 4 Reaching the Summit: ITIL-integrated Self-Service in the Hybrid Cloud © 2013 Microsoft Corporation. All rights.
Make your app a native part of Office with Add-ins

Make your app a native part of Office with Add-ins
Accelerate your DevOps with OpenShift by Red Hat

Accelerate your DevOps with OpenShift by Red Hat
From IT Pros to IT Heroes - with Azure DevTest Labs

From IT Pros to IT Heroes - with Azure DevTest Labs
5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.

5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.
Building Compliant Team Sites

Building Compliant Team Sites
Azure Machine Learning Deploying and Managing Models in production

Azure Machine Learning Deploying and Managing Models in production
Azure on Steroids: Full Automation with PowerShell

Azure on Steroids: Full Automation with PowerShell
5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.

5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.
How To Deliver Apps Faster And Secure Them The Microsoft Way

How To Deliver Apps Faster And Secure Them The Microsoft Way
Use any Amazon S3 application with Azure Blob Storage

Use any Amazon S3 application with Azure Blob Storage
6/11/2018 8:14 AM THR2175 Building and deploying existing ASP.NET applications using VSTS and Docker on Windows Marcel de Vries CTO, Xpirit © Microsoft.

6/11/2018 8:14 AM THR2175 Building and deploying existing ASP.NET applications using VSTS and Docker on Windows Marcel de Vries CTO, Xpirit © Microsoft.
Azure Cloud Shell Magic of Modern Command-line Management

Azure Cloud Shell Magic of Modern Command-line Management
Developing Hybrid Apps on Microsoft Azure Stack

Developing Hybrid Apps on Microsoft Azure Stack
Migrating your IaaS infrastructure from ASM to ARM without downtime

Migrating your IaaS infrastructure from ASM to ARM without downtime
How to expand your Azure Stack marketplace

How to expand your Azure Stack marketplace
TFS Database Import Service for Visual Studio Team Services

TFS Database Import Service for Visual Studio Team Services
Optimizing Microsoft OneDrive for the enterprise

Optimizing Microsoft OneDrive for the enterprise
7/17/2018 3:31 AM BRK3313 Plan, orchestrate and tune large resource deployments on Azure infrastructure IaaS Igal Figlin Principal PM Manager – Azure Compute.

7/17/2018 3:31 AM BRK3313 Plan, orchestrate and tune large resource deployments on Azure infrastructure IaaS Igal Figlin Principal PM Manager – Azure Compute.
Virtual Machine Diagnostics in Microsoft Azure

Virtual Machine Diagnostics in Microsoft Azure

Similar presentations

Ads by Google