Azure DevOps - How to monitor the files & folders placed into the Build Pipeline Workfolder
When we are building a new Pipeline into Azure DevOps, we don't have any visibility on the server itself and his content placed into work folder. In many situation, like debugging, that vision is really useful to find a file or a path to apply into another task (like Code Coverage report path). To do that, the simplest option is to place into the pipeline flow one PowerShell step with this simple execution. In Yaml mode: - powershell: | Write-Host "Show all folder content" Get-ChildItem -Path $(Agent.WorkFolder)\*.* -Recurse -Force errorActionPreference: continue displayName: 'PowerShell Script List folder structure' continueOnError: true In visual editor mode: At the next execution, you will have into the Pipeline execution log all folders and files placed into the agent workplace like: You can use the search button or View raw log option to look the file or folder you are looking for. That task could be disable in standard usage, and enable only when you need to debug. Fabrice Romelard
Azure Powershell DSC vs Ansible
Hey Guys, I just want to find out what are you using for Desired State Configuration on Azure. Do you use built in Powershell DSC or you are using Ansible with DSC enabled for Windows Machines? I am in the process of deciding which solution should the best for us. Also I would like to automate on-prem infrastructure. Which solution do you use? Regards, Wojciech
Get AzADGroupMembers from nested groups
Hi, I'm trying to get all members of a group (including nested groups members) to add to a teams private channel. We have a script to add members of a group to a private channel, but it will not add nested groups members. $members = Get-AzADGroupMember -ObjectId 'source_groupID_here' | select mail $tal = 0 foreach ($member in $members) { $User = $member.mail Add-TeamChannelUser -GroupId 'teams_groupID_here' -DisplayName 'Private_channel_name' -user $User $tal += 1 } $tal Is there a way to add those who are members of the nested groups without having to add each nested group individually?Connect-AzAccount with Managed Service Identity
I'm running PowerShell in the context of an Azure Web App that has a System Managed Service Identity configured. Currently, I can access the Key Vault by doing this: $MsiHeader = @{'Secret' = $env:MSI_SECRET} $VaultResource = "<a href="https://vault.azure.net" target="_blank">https://vault.azure.net</a>" $ApiVersion = "2017-09-01" $VaultUri = "{0}?resource={1}&api-version={2}" -f $env:MSI_Endpoint, $VaultResource, $ApiVersion $VaultHeader = @{ Authorization = "Bearer $($VaultAuth.access_token)" } $Secret = Invoke-RestMethod "<a href="https://MyVault.vault.azure.net/secrets/testsecret?api-version=7.0" target="_blank">https://MyVault.vault.azure.net/secrets/testsecret?api-version=7.0</a>" -Headers $VaultHeader This works just fine for accessing the vault, but is it possible to use the MSI to connect to Azure resources using the Az PowerShell module? If so, how can this be done? I can't quite seem to figure out how to do this properly. I've tried hacking at it like this: $MsiHostName,$MsiPort = $env:MSI_ENDPOINT -replace 'http://' -replace '/MSI/token/' -split ':' $null = Connect-AzAccount -ManagedServiceHostName $MsiHostName -ManagedServicePort $MsiPort -ManagedServiceSecret $env:MSI_SECRET But this doesn't seem to work and I can't find any examples of this on the web. Any help with this is much appreciated!
List ALL ARM and ASM/Classic resources with AzureRM PowerShell?
I've noticed that the PowerShell cmdlet Get-AzureRMResource (from AzureRM module v6.12.0) returns some classic resources types, which is great and helps for what I need to do (get an inventory of all resources across all of our subscriptions). However, I'm hoping to find out if this is a dependable and complete listing of all classic resources in the subscription? or are there still classic resources that are not exposed to the ARM cmdlets/API? Some of the resource types returned are Microsoft.ClassicCompute/domainNames Microsoft.ClassicCompute/virtualMachines Microsoft.ClassicStorage/storageAccounts Note: I'm running the commands under as an ARM "Reader" RBAC role holder at the subscription level, but I do not have ASM 'administrator' or 'co-administrator' rights.
Azure Automation Runbooks using Powershell: Push notifications error?
I'm trying to run some PnP PowerShell commands in an Azure Runbook (e.g. Get-PnPContentType, Apply-PnPProvisioningTemplate, etc. ) over a SharePoint site, but it keeps returning the error below: The Push Notifications feature is not activated on the site The correct modules have been imported and it only errors on some commands. Running the commands in a PowerShell window with the same credentials doesn't produce any errors, and activating the 'Push Notifications' feature manually and retriggering the Runbook won't produce any error output, but will say that the Runbook failed to run 3 times.Azure Cloud Shell ile Windows Server 2019 VM olusturma (tr-TR)
Zamanın ötesinde yaşayan en önemlisi zamanın kıymetini bilen sistem yöneticilerinin yeni vazgeçilmezi olan Azure Cloud Shell sayesinde dakikalar içerisinde sadece bir kaç satır komut yada script ile en önemlisi aynı standartda sanal sunucu kurulumları gerçekleştirebilirsiniz. Azure Cloud Shell (PowerShell) ile derlemiş olduğum komutlar sayesinde önce kaynak grubu oluşturup akabinde sanal networkunuzu yapılandırabilirsiniz. Sanal sunucunzun temeli olacak kaynak grubu ve sanal networkunuz oldukça önemli bir kurulumdur. Doğru kurgulanan sanal networkunuz sayesinde ileride eklemek istediğiniz diğer Azure featureları için kolaylık sağlayacaktır. New-AzResourceGroup -Name PSAzureRG -Location westus $gatewaysubnet = New-AzVirtualNetworkSubnetConfig -Name GatewaySubnet -AddressPrefix "192.172.101.0/27" $virtualNetwork = New-AzVirtualNetwork -Name AzureBCVnet -ResourceGroupName PSAzureBootCampRG -Location westus -AddressPrefix "192.172.101.0/24" -Subnet $gatewaysubnet Add-AzVirtualNetworkSubnetConfig -Name AzureFirewallSubnet -VirtualNetwork $virtualNetwork -AddressPrefix "192.172.101.32/27" Add-AzVirtualNetworkSubnetConfig -Name DMZSubnet -VirtualNetwork $virtualNetwork -AddressPrefix "192.172.101.96/27" $virtualNetwork | Set-AzVirtualNetwork Oluşturdunuz sanal networkunuz sonrasu sanal sunucunuz için ihtiyacınız olacak public IP ve sunucunuzun diğer değişken detaylarını ikinci bölümde hazırladığım komutlar ile tamamlayabilirsiniz. #create VM $publicipvm = New-AzPublicIpAddress -ResourceGroupName "PSAzureRG" -name "VMIP" -location "westus" -AllocationMethod Static -Sku Standard $resourceGroup = "PSAzureRG" $location = "westus" $vmName = "ACS-w2019-vm" $cred = Get-Credential -Message "Enter a username and password for the virtual machine." New-AzResourceGroup -Name $resourceGroup -Location $location New-AzVM -ResourceGroupName $resourceGroup -Name $vmName -Location $location -ImageName "Win2019Datacenter" -Size "Standard_D2_v3" -VirtualNetworkName "AzureBCVnet" -SubnetName "DMZSubnet" -PublicIpAddressName $publicipvm -Credential $cred -OpenPorts 3389 İlk bölümde oluşturduğunuz kaynak grubunda ve sanal networkunda olan sanal sunucunuz için işletim sistemi opsiyonu olarak Windows Server 2019 Datacenter ve boyut olarak da D2_v3 seçiyorum. Oluşturduğum sanal network ve public IP yi sunucuma tanımlayıp 3389 portundan sunucuma RDP ile erişim sağlayıp işlemlerimi gerçekleştirmek için port izinimi veriyorum. İşte hepsi bu kadar komutu çalıştırıyorum ve 3-4 dakika içinde sanal sunucum hazır.
Azure Pipeline - Powershell Task Output
Hello all, I am looking to leverage Azure Pipelines to replace an existing scheduled task that I have running on an on-premise server. Today, my script connects to a SQL database using the dbatools PowerShell module, runs a few queries, and dumps the files to a specific file format. Then uploads these files to an SFTP server. My repository contains the SQL files to run, the Get-Data.ps1 script that connects to the database, retrieves the data, and exports it to the format necessary. I also have a Send-Data.ps1 which takes the files created from Get-Data.ps1 and SFTPs them to an SFTP server. I've got 1 PowerShell script to retrieve and output the data to files, and another to SFTP the files to an SFTP server. My Send-Data.ps1 script has 3 parameters - localpath, remotepath and credential. I am curious how I could have the Get-Data.ps1 script write as output the data required for "localpath" parameter, and then pass this to the Send-Data.ps1 as a 2nd task in the pipeline? Additionally, is there a recommended way to pass credentials into PowerShell scripts in a pipeline? I saw where I can leverage the library to store a username and password to pass into a script. But this isn't a PSCredential object. Would I do this by using Azure Keyvault? Could I do it using the library and the inline script part of the pipeline? Or read it in from the key vault/library, create the PSCredential object, store that as a variable(?) and pass it into the PowerShell script task? Thanks in advance for any input. Steve
