Skip to content

sitoader/Azure-Arc-Automation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
docs
docs
 
 
scripts
scripts
 
 
README.md
README.md
 
 

Repository files navigation

Azure Arc Automation

This repository contains scripts and resources to automate the process of enabling Azure Arc on servers across multiple customers. The scripts have been developed with a CSP Direct Bill partner in mind. However, the principles demonstrated can be adapted to meet the needs of other partners or customers as well.

The automation includes creating customer tenants, adding subscriptions, enabling GDAP, installing the Arc agent, and configuring the servers.

Warning / Disclaimer

This repository is a proof of concept and not a finished product. It is intended to be customized to meet individual requirements and must undergo thorough testing before being deployed in a production environment. The author assumes no responsibility for any damages that may result from the use of these scripts.

Overview

The goal of this project is to streamline the deployment and management of Azure Arc-enabled servers at scale. By automating these tasks, we aim to reduce manual effort, minimize errors, and ensure consistent configurations across all customer environments.

Steps Included

  1. CMDB: Storing and updating customers tenants info.
  2. Partner Center: Create customer tenants using the Partner Center API.
  3. Enable GDAP: Enable Granular Delegated Admin Privileges for each customer tenant.
  4. Install the Arc Agent: Deploy the Azure Arc agent on servers.
  5. Configure the Arc-Enabled servers: Configure servers properties such as license type (SQL Servers), Extended Security Updates.
  6. Azure Lighthouse: Onboard customers with Lighthouse to have a holistic overview.

Getting Started

All steps are documented in the docs folder. Please start there for detailed instructions and additional information.

Prerequisites

  • Azure subscription
  • Access to Partner Center
  • PowerShell and Azure CLI installed
  • Appropriate permissions to create and manage resources in Azure

Future Improvements

When adopting, you might want to consider the following improvements

  • Using Azure Key Vault to store the Service Principal credentials.
  • Deploy a landing zone in each created tenant before onboarding the Arc servers.
  • Extend the CMDB to contain the desired Azure Region.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages