Merge pull request #1239 from steviecoaster/gh970

(#970) Publish new Organizational Deployment Guide

Author: imm0rtalsupp0rt

src/components/docs/CentralManagementDatabaseSetup.mdx

@@ -0,0 +1,14 @@
+---
+
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+
+#### Requirements
+
+        To install and run Jenkins, your server must meet the following requirements:
+
+        - Windows Server 2022 or later
+        - 2 CPU cores
+        - 4 GB+ of RAM
+        - 50 GB+ of drive space

src/components/docs/CentralManagementServiceSetup.mdx

@@ -0,0 +1,40 @@
+---
+
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+import TabsPane from '@choco-astro/components/tabs/TabsPane.astro';
+import TabsPaneContainer from '@choco-astro/components/tabs/TabsPaneContainer.astro';
+import TabsTabContainer from '@choco-astro/components/tabs/TabsTabContainer.astro';
+import CentralManagementSecureConnectionStrings from '@components/docs/CentralManagementSecureConnectionStrings.mdx';
+import DynamicCodeBlockInput from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlockInput.astro';
+import DynamicCodeBlock from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlock.astro';
+
+export const dbOptionsDb = [
+    { id: 'integrated-security-db', title: 'Authenticate w/ Integrated Security', isActive: true },
+    { id: 'sql-login-db', title: 'Authenticate w/ Sql Login', updateAnchor: true },
+    { id: 'connection-string-db', title: 'Authenticate w/ Connection String', updateAnchor: true }
+];
+
+<Callout type="info">
+    <p>
+        The Chocolatey Central Management Database is the first component that should be installed.
+        It provides the database schema used by Chocolatey Central Management. The connection string
+        provided needs to have the ability to create the ChocolateyManagement database and update the schema.
+    </p>
+</Callout>
+
+<DynamicCodeBlock language="powershell">
+{`
+$ccmParams = @{
+    ConnectionString = 'Server=Localhost\\SQLEXPRESS;Database=ChocolateyManagement;Trusted_Connection=true;'
+    Component = 'Database'
+    CertificateDnsName = 'SslCertificateDnsName'
+    Thumbprint = 'SslCertificateThumbprint'
+}
+
+& ([Scriptblock]::Create([System.Net.WebClient]::New().DownloadString('https://raw.githubusercontent.com/chocolatey/choco-orgguide-scripts/refs/heads/main/Bootstrap.ps1')))
+
+.\\Install-ChocolateyCentralManagement.ps1 @ccmParams
+`}
+</DynamicCodeBlock>

src/components/docs/CentralManagementWebsiteSetup.mdx

@@ -0,0 +1,40 @@
+---
+
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+import TabsPane from '@choco-astro/components/tabs/TabsPane.astro';
+import TabsPaneContainer from '@choco-astro/components/tabs/TabsPaneContainer.astro';
+import TabsTabContainer from '@choco-astro/components/tabs/TabsTabContainer.astro';
+import CentralManagementSecureConnectionStrings from '@components/docs/CentralManagementSecureConnectionStrings.mdx';
+import DynamicCodeBlockInput from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlockInput.astro';
+import DynamicCodeBlock from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlock.astro';
+
+<Callout type="info">
+    <p>
+        Before installing the Chocolatey Central Management Service component, ensure you have set up the Chocolatey Central Management Database component.
+    </p>
+</Callout>
+
+<Callout type="warning">
+    <p>
+        - _Ensure that you have enabled **Windows Authentication** and **SQL Server Authentication** in your SQL Server instance._
+        - _The connection string used to install the Service component must have at least _**db_datareader**_ and _**db_datawriter**_ permissions on the ChocolateyManagement database._
+        - _If you are using a custom SSL certificate, ensure that the certificate is installed  in the LocalMachine\TrustedPeople store on the server where the Chocolatey Central Management Service is being installed._
+    </p>
+</Callout>
+
+<DynamicCodeBlock language="powershell">
+{`
+$ccmParams = @{
+    ConnectionString = 'Server=Localhost\\SQLEXPRESS;Database=ChocolateyManagement;User ID=ChocoUser;Password=Ch0c0R0cks;'
+    Component = 'Service'
+    CertificateDnsName = 'SslCertificateDnsName'
+    Thumbprint = 'SslCertificateThumbprint'
+}
+
+& ([Scriptblock]::Create([System.Net.WebClient]::New().DownloadString('https://raw.githubusercontent.com/chocolatey/choco-orgguide-scripts/refs/heads/main/Bootstrap.ps1')))
+
+.\\Install-ChocolateyCentralManagement.ps1 @ccmParams
+`}
+</DynamicCodeBlock>

src/components/docs/FossOrgGuideRepository.mdx

@@ -0,0 +1,40 @@
+---
+
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+import TabsPane from '@choco-astro/components/tabs/TabsPane.astro';
+import TabsPaneContainer from '@choco-astro/components/tabs/TabsPaneContainer.astro';
+import TabsTabContainer from '@choco-astro/components/tabs/TabsTabContainer.astro';
+import CentralManagementSecureConnectionStrings from '@components/docs/CentralManagementSecureConnectionStrings.mdx';
+import DynamicCodeBlockInput from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlockInput.astro';
+import DynamicCodeBlock from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlock.astro';
+
+<Callout type="info">
+    <p>
+        Before installing the Chocolatey Central Management Website component, ensure you have set up the Chocolatey Central Management Database component.
+    </p>
+</Callout>
+
+<Callout type="warning">
+    <p>
+        - _Ensure that you have enabled **Windows Authentication** and **SQL Server Authentication** in your SQL Server instance._
+        - _The connection string used to install the Service component must have at least _**db_datareader**_ and _**db_datawriter**_ permissions on the ChocolateyManagement database._
+        - _If you are using a custom SSL certificate, ensure that the certificate is installed  in the LocalMachine\TrustedPeople store on the server where the Chocolatey Central Management Service is being installed._
+    </p>
+</Callout>
+
+<DynamicCodeBlock language="powershell">
+{`
+$ccmParams = @{
+    ConnectionString = 'Server=Localhost\\SQLEXPRESS;Database=ChocolateyManagement;User ID=ChocoUser;Password=Ch0c0R0cks;'
+    Component = 'Website'
+    CertificateDnsName = 'SslCertificateDnsName'
+    Thumbprint = 'SslCertificateThumbprint'
+}
+
+& ([Scriptblock]::Create([System.Net.WebClient]::New().DownloadString('https://raw.githubusercontent.com/chocolatey/choco-orgguide-scripts/refs/heads/main/Bootstrap.ps1')))
+
+.\\Install-ChocolateyCentralManagement.ps1 @ccmParams
+`}
+</DynamicCodeBlock>

src/components/docs/JenkinsHardwareRecommendations.mdx

@@ -0,0 +1,94 @@
+---
+
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+import TabsPane from '@choco-astro/components/tabs/TabsPane.astro';
+import TabsPaneContainer from '@choco-astro/components/tabs/TabsPaneContainer.astro';
+import TabsTabContainer from '@choco-astro/components/tabs/TabsTabContainer.astro';
+import CentralManagementSecureConnectionStrings from '@components/docs/CentralManagementSecureConnectionStrings.mdx';
+import CentralManagementDatabaseSetup from '@components/docs/CentralManagementDatabaseSetup.mdx';
+import CentralManagementWebsiteSetup from '@components/docs/CentralManagementWebsiteSetup.mdx';
+import CentralManagementServiceSetup from '@components/docs/CentralManagementServiceSetup.mdx';
+import OrgGuideCcmDatabase from '@components/docs/OrgGuideCcmDatabase.mdx';
+import OrgGuideCcmWeb from '@components/docs/OrgGuideCcmWeb.mdx';
+import OrgGuideCcmService from '@components/docs/OrgGuideCcmService.mdx';
+import OrgGuideCentralManagementIntro from '@components/docs/OrgGuideCentralManagementIntro.mdx'
+import DynamicCodeBlockInput from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlockInput.astro';
+import DynamicCodeBlock from '@choco-astro/components/dynamicCodeBlock/DynamicCodeBlock.astro';
+export const ccmInstall = [
+    { id: 'ccm-database', title: 'Chocolatey Cental Management Database', isActive: true },
+    { id: 'ccm-service', title: 'Chocolatey Central Management Service', updateAnchor: true },
+    { id: 'ccm-web', title: 'Chocolatey Central Management Website', updateAnchor: true }
+];
+
+<OrgGuideCentralManagementIntro />
+
+### Requirements
+
+To install and run Chocolatey Central Management, your server(s) must meet the following requirements:
+
+- Windows Server 2022 or later.
+- 4 CPU cores
+- 16 GB RAM
+- 100 GB+ of drive space for computer information and deployment messages processed by the Chocolatey Central Management Service.
+
+### Planning Your Installation
+
+Chocolatey Central Management can be installed on a single server or each component can be installed on separate servers. **All three components are required for a Chocolatey Central Management installation.**
+
+If you have Chocolatey for Business licenses for more than 1,000 endpoints, we recommended installing the components on separate servers.
+For 1,000 licenses or fewer, you can install all components on a single server, though we still recommend using a licensed version of SQL Server for the database component.
+
+<Callout type="warning" title="Before You Begin">
+
+Before you can install the Chocolatey Central Management Database, you need to have a SQL Server Instance available. SQL Server Express is only recommended for testing and small environments (fewer than 1,000 endpoints).
+</Callout>
+
+### Environment Information
+
+| Variable | Value | Usage |
+| -------- | ----- | ----- |
+| Component | `Database`, `Service`, `Website` | The component(s) of Chocolatey Central Management to install on the current server. |
+| ServiceCredential | Varies | The credentials to use with the Chocolatey Management Service. If the account does not exist, it will be created. The user must have `Log on as a service` privilege. (Service and Web components only) |
+| ConnectionString | Varies | The connection string used to connect to the SQL database. |
+| IsOffline | True | If true, you will be required to provide the path to the zip file containing the internalized Chocolatey components required for installation. |
+| OfflineInstallationMedia | Varies | The path to the zip file containing the internalized Chocolatey components required for installation. This is only required if `IsOffline` is true. |
+| CertificateDnsName | <DynamicCodeBlockInput name="SslCertificateDnsName" defaultValue="Fabrikam.com" /> | The DNS name to use for the Chocolatey Management Service if using a wildcard certificate. (Service and Web components only) |
+| Thumbprint | <DynamicCodeBlockInput name="SslCertificateThumbprint" defaultValue="1234567890" /> | The thumbprint of the certificate to use for the Chocolatey Management Service. (Service and Web components only) |
+
+### Securing Chocolatey Central Management Communications
+
+By default, the install will create and use self-signed certificates for the Chocolatey Management Service and Web components.
+If you wish to use your own certificates, you can do so by providing the `Thumbprint` and `CertificateDnsName` parameters.
+
+<details>
+<summary><strong>You must install the certificate to the Local Machine \ Trusted People store when providing the Thumbprint. (click to expand)</strong></summary>
+<ul class="list-style-type-disc">
+<li>Once you have your SSL certificate in a locatable directory, type `certlm.msc` in the Search bar of the Chocolatey server to open the Microsoft Management Console for Certificates on the local machine.</li>
+<li>Right-click the `Trusted People` store and select `All Tasks > Import...`. This will open the Certificate Import Wizard.</li>
+<li>Select `Next`, then browse to the location of the SSL certificate you want to use.</li>
+<li>Once you select the certificate, click `Next`.</li>
+<li>Input the password for the certificate and check the box that says `Mark this key as exportable. This will allow you to back up and transport your keys at a later time.` Click `Next`.</li>
+<li>The `Trusted People` certificate store should already be input in the `Browse...` bar. Select `Next`.</li>
+<li>Verify the information in the pane and then select `Finish`.</li>
+</ul>
+</details>
+
+### Chocolatey Central Management Component Installation Scripts
+
+<TabsTabContainer content={ccmInstall} />
+<TabsPaneContainer>
+    <TabsPane content={ccmInstall[0]}>
+        <OrgGuideCcmDatabase />
+        <Xref title="Back To Top" value="setup-central-management"/>
+    </TabsPane>
+    <TabsPane content={ccmInstall[1]}>
+        <OrgGuideCcmService />
+        <Xref title="Back To Top" value="setup-central-management"/>
+    </TabsPane>
+    <TabsPane content={ccmInstall[2]}>
+        <OrgGuideCcmWeb />
+        <Xref title="Back To Top" value="setup-central-management"/>
+    </TabsPane>
+</TabsPaneContainer>

src/components/docs/OrgGuideCcmDatabase.mdx

@@ -0,0 +1,36 @@
+---
+---
+import Callout from '@choco-astro/components/Callout.astro';
+import Xref from '@components/Xref.astro';
+import TabsPane from '@choco-astro/components/tabs/TabsPane.astro';
+import TabsPaneContainer from '@choco-astro/components/tabs/TabsPaneContainer.astro';
+import TabsTabContainer from '@choco-astro/components/tabs/TabsTabContainer.astro';
+import CentralManagementSecureConnectionStrings from '@components/docs/CentralManagementSecureConnectionStrings.mdx';
+import CentralManagementDatabaseSetup from '@components/docs/CentralManagementDatabaseSetup.mdx';
+import CentralManagementWebsiteSetup from '@components/docs/CentralManagementWebsiteSetup.mdx';
+import CentralManagementServiceSetup from '@components/docs/CentralManagementServiceSetup.mdx';
+import OrgGuideCcmDatabase from '@components/docs/OrgGuideCcmDatabase.mdx';
+import OrgGuideCcmService from '@components/docs/OrgGuideCcmService.mdx';
+export const ccmInstall = [
+    { id: 'ccm-database', title: 'CCM Database', isActive: true },
+    { id: 'ccm-web', title: 'CCM Web', updateAnchor: true },
+    { id: 'ccm-service', title: 'CCM Service', updateAnchor: true }
+];
+
+Deploying Chocolatey packages to your endpoints is simple and efficient with Chocolatey Central Management, our reporting and management dashboard.
+
+Using Chocolatey Agent, your endpoints can report on currently installed and outdated packages and run Basic deployments from Chocolatey Central Management to install, upgrade, and uninstall Chocolatey packages, and with Advanced deployments, you can run PowerShell scripts on endpoints as well.
+
+To set up and configure Chocolatey Central Management, please select the tile to get started:
+
+<div class="row mb-md-5">
+    <div class="mb-4 mb-lg-0 col-sm-6 col-lg-4">
+        <div class="card card-link card-overlay-bottom card-overlay-theme-bottom h-100 min-h-px-200" style="background-image:url('https://img.chocolatey.org/backgrounds/chocolatey-for-business.svg');">
+            <div class="card-body d-flex flex-column z-1">  {/* The image above looks weird, but so much better than chocolatey-for-business/central-management-logo.png */}
+                <div class="mt-auto">
+                    <Xref title="Chocolatey Central Management" value="setup-central-management" classes="h4 mb-0 stretched-link" />
+                </div>
+            </div>
+        </div>
+    </div>
+</div>