# Basic Azure Resource Management

## PowerShell

PowerShell is a powerful scripting and automation framework developed by Microsoft. It is designed for task automation and configuration management and is particularly useful for managing and automating Microsoft Windows environments. PowerShell uses a command-line interface with a scriptable approach, and it's built on the .NET Framework.

* [What is PowerShell?](https://learn.microsoft.com/powershell/scripting/overview?view=powershell-7.3&WT.mc_id=AZ-MVP-5004796)

## PowerShell and Microsoft Azure

When it comes to Microsoft Azure, PowerShell provides a robust set of cmdlets (pronounced "command-lets") that enable you to interact with and manage Azure resources, making it a valuable tool for working with Azure services. 

When you run a PowerShell cmdlet to, for example, create a virtual machine or retrieve information about an Azure resource, the cmdlet translates your request into an HTTP request to the relevant Azure REST API endpoint.

* [Azure PowerShell Documentation](https://learn.microsoft.com/powershell/azure/?view=azps-10.4.1&WT.mc_id=AZ-MVP-5004796)

## Resource Creation

In [2]:
# Import Module
Import-Module Az -Verbose

[93mVERBOSE: Loading module from path '/root/.local/share/powershell/Modules/Az/10.4.1/Az.psd1'.[0m


In [None]:
#Create Azure Resource Group
New-AzResourceGroup -Name "MyResourceGroup" -Location "West US"

In [15]:
# Get Regions

Get-AzLocation | Select-Object -First 1
Get-AzLocation | Select-Object DisplayName, Location, PhysicalLocation, GeographyGroup | Format-Table



[32;1mLocation         : [0meastus
[32;1mDisplayName      : [0mEast US
[32;1mType             : [0mRegion
[32;1mLongitude        : [0m-79.8164
[32;1mLatitude         : [0m37.3719
[32;1mPhysicalLocation : [0mVirginia
[32;1mRegionType       : [0mPhysical
[32;1mRegionCategory   : [0mRecommended
[32;1mGeographyGroup   : [0mUS
[32;1mPairedRegion     : [0m[
                     {
                       "Name": "westus",
                       "Id": 
                   "/subscriptions/6bca53bc-98d9-4cd3-92e7-0364c7bffac4/locations/westus",
                       "SubscriptionId": null
                     }
                   ]
[32;1mProviders        : [0m{Microsoft.ContainerRegistry, Microsoft.AlertsManagement, microsoft.insights, 
                   Microsoft.DesktopVirtualization…}



Error: Microsoft.DotNet.Interactive.NoSuitableKernelException: No kernel found for Microsoft.DotNet.Interactive.Commands.RequestHoverText with target kernel 'pwsh'.
   at Microsoft.DotNet.Interactive.Commands.KernelCommand.InvokeAsync(KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\Commands\KernelCommand.cs:line 184
   at Microsoft.DotNet.Interactive.Kernel.HandleAsync(KernelCommand command, KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\Kernel.cs:line 324
   at Microsoft.DotNet.Interactive.KernelCommandPipeline.<BuildPipeline>b__6_0(KernelCommand command, KernelInvocationContext context, KernelPipelineContinuation _) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\KernelCommandPipeline.cs:line 60
   at Microsoft.DotNet.Interactive.KernelCommandPipeline.SendAsync(KernelCommand command, KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\KernelCommandPipeline.cs:line 51

Error: Microsoft.DotNet.Interactive.NoSuitableKernelException: No kernel found for Microsoft.DotNet.Interactive.Commands.RequestHoverText with target kernel 'pwsh'.
   at Microsoft.DotNet.Interactive.Commands.KernelCommand.InvokeAsync(KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\Commands\KernelCommand.cs:line 184
   at Microsoft.DotNet.Interactive.Kernel.HandleAsync(KernelCommand command, KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\Kernel.cs:line 324
   at Microsoft.DotNet.Interactive.KernelCommandPipeline.<BuildPipeline>b__6_0(KernelCommand command, KernelInvocationContext context, KernelPipelineContinuation _) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\KernelCommandPipeline.cs:line 60
   at Microsoft.DotNet.Interactive.KernelCommandPipeline.SendAsync(KernelCommand command, KernelInvocationContext context) in D:\a\_work\1\s\src\Microsoft.DotNet.Interactive\KernelCommandPipeline.cs:line 51



[32;1mDisplayName          Location           PhysicalLocation GeographyGroup[0m
[32;1m-----------          --------           ---------------- --------------[0m
East US              eastus             Virginia         US
East US 2            eastus2            Virginia         US
South Central US     southcentralus     Texas            US
West US 2            westus2            Washington       US
West US 3            westus3            Phoenix          US
Australia East       australiaeast      New South Wales  Asia Pacific
Southeast Asia       southeastasia      Singapore        Asia Pacific
North Europe         northeurope        Ireland          Europe
Sweden Central       swedencentral      Gävle            Europe
UK South             uksouth            London           Europe
West Europe          westeurope         Netherlands      Europe
Central US           centralus          Iowa             US
South Africa North   southafricanorth   Johannesburg     Africa
Central Indi

In [19]:
#Create Azure Resource Group
$region = 'AustraliaEast'
New-AzResourceGroup -Name "MyResourceGroup$region" -Location $region


[32;1mResourceGroupName : [0mMyResourceGroupAustraliaEast
[32;1mLocation          : [0maustraliaeast
[32;1mProvisioningState : [0mSucceeded
[32;1mTags              : [0m
[32;1mResourceId        : [0m/subscriptions/6bca53bc-98d9-4cd3-92e7-0364c7bffac4/resourceGroups/MyResourceGr
                    oupAustraliaEast




In [29]:
# Create a storage account (attempt1)

$region = 'AustraliaEast'
$ResourceGroupName = "MyResourceGroup$region"
New-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mystorageaccount" -Location $region -SkuName Standard_LRS -AllowBlobPublicAccess $false

Default value of AllowBlobPublicAccess and AllowCrossTenantReplication settings on storage account will be changed to False in the future release. 
When AllowBlobPublicAccess is False on a storage account, container ACLs cannot be configured to allow anonymous access to blobs within the storage account. 
When AllowCrossTenantReplication is False on a storage account, cross AAD tenant object replication is not allowed when setting up Object Replication policies.
- The change is expected to take effect in Az version : '11.0.0'
- The change is expected to take effect in Az.Storage version : '6.0.0'
Cmdlet invocation changes :
    Old Way : AllowBlobPublicAccess and AllowCrossTenantReplication are set to True by defult.
    New Way : AllowBlobPublicAccess and AllowCrossTenantReplication are set to False by default.
[31;1mNew-AzStorageAccount: [0m
[31;1m[36;1mLine |[0m
[31;1m[36;1m[36;1m   5 | [0m [36;1mNew-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mys[0m …[0

Error: Command failed: SubmitCode: # Create a storage account (attempt1) ...

In [44]:
# Create a storage account (attempt2)
$uniqueId = [guid]::NewGuid().ToString().Substring(0,4)
$region = 'AustraliaEast'
$ResourceGroupName = "MyResourceGroup$region"
New-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mystgacc$uniqueId" -Location $region -SkuName Standard_LRS -AllowBlobPublicAccess $false -verbose

Default value of AllowBlobPublicAccess and AllowCrossTenantReplication settings on storage account will be changed to False in the future release. 
When AllowBlobPublicAccess is False on a storage account, container ACLs cannot be configured to allow anonymous access to blobs within the storage account. 
When AllowCrossTenantReplication is False on a storage account, cross AAD tenant object replication is not allowed when setting up Object Replication policies.
- The change is expected to take effect in Az version : '11.0.0'
- The change is expected to take effect in Az.Storage version : '6.0.0'
Cmdlet invocation changes :
    Old Way : AllowBlobPublicAccess and AllowCrossTenantReplication are set to True by defult.
    New Way : AllowBlobPublicAccess and AllowCrossTenantReplication are set to False by default.

[32;1mStorageAccountName ResourceGroupName            PrimaryLocation SkuName      Kind      AccessTier C[0m
[32;1m                                                          

In [45]:
#Remove Azure Storage account
$region = 'AustraliaEast'
$ResourceGroupName = $ResourceGroupName
Remove-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mystgacc$uniqueId" -Force -verbose
Get-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mystgacc$uniqueId" -verbose

[93mVERBOSE: Performing the operation "Remove Storage Account" on target "mystgacce3b9".[0m
[31;1mGet-AzStorageAccount: [0m
[31;1m[36;1mLine |[0m
[31;1m[36;1m[36;1m   5 | [0m [36;1mGet-AzStorageAccount -ResourceGroupName $ResourceGroupName -Name "mys[0m …[0m
[31;1m[36;1m[36;1m[0m[36;1m[0m[36;1m     | [31;1m ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~[0m
[31;1m[36;1m[36;1m[0m[36;1m[0m[36;1m[31;1m[31;1m[36;1m     | [31;1mThe Resource 'Microsoft.Storage/storageAccounts/mystgacce3b9' under resource group 'MyResourceGroupAustraliaEast' was not found. For more details please go to https://aka.ms/ARMResourceNotFoundFix[0m


Error: Command failed: SubmitCode: #Remove Azure Storage account ...