microsoft azure automation

1CONFIDENTIAL

Microsoft Azure Automation

NOVEMBER 25, 2016

Alex Feshchenko,SENIOR SOFTWARE ENGINEER

logo

2CONFIDENTIAL

AGENDA

Introduction to Automation1

Scheduling2

Gallery3

Authoring4

Azure Automation DSC5

Q&A6

INTRODUCTION TO AUTOMATION

NOVEMBER 25, 2016

Azure Automation valueA platform for automating management of resources and appsAzure, any cloud, and on-premises Process and configuration automation (runbooks, DSC)Change tracking and Update managementWindows and Linux

Eliminate time consuming, error prone, and repetitive tasksSave time while lowering overhead costsDeliver more reliable services, fasterIntegrate with the services you depend onGet easier configuration management with DSCManage system changes and updates

Gain visibility across workloads

Enable consistent control and compliance

Respond faster to security threats

Ensure availability of apps and data

Insight & Analytics

Protection & Recovery

Security & Compliance

Automation & Control

Operations Management and Security

Public and hosted clouds

Azure or AWS

On-premises datacenter

Process, Configuration, & Update AutomationAutomate management tasks with runbooksLet runbooks handle the creation, deployment, monitoring, and maintenance of Azure resources and third-party applications.

Assure OS Configuration with PowerShell DSCConsistently deploy, reliably monitor, and automatically update the desired state of your VMsPull service, Node Management, Reporting

Change TrackingIdentify software, file, registry, and service changes in your environment to help pinpoint operational issues.

Unified update managementPatch Insights – before, during, after, reliability, coordinationPatch Orchestration – sequencing, pre & post steps

AssetsSecure, global storeVariablesCredentialsConnectionsCertificatesModulesSchedules

Reuse across runbooksManage in a central location (create/edit/delete)Use within runbooks (e.g., Get-AutomationCredential)

Secrets encryptedAutomatic encryption (e.g., credential password)User-selected encryption (e.g., my encrypted variable)

Runbooks and AuthoringRunbooksPowerShellGraphicalPowerShell Workflow (textual and graphical)Bash, Python (2, 3) – coming soon

AuthoringTextual and Graphical authoring/testing within the Automation serviceOn-premises textual authoring with PowerShell ISE add-on

Integration & HybridIntegration ModulesPowerShell modules available to integrate with most important systemsLeverage existing PowerShell modules for Microsoft and 3rd-party systemsCreate your own PowerShell modules to integrate with additional systems

GalleryPublic gallery of Microsoft and customer runbooks for common tasksGet started automating quickly

Hybrid Runbook WorkersRun runbooks directly in your VMs – Azure-based, other cloud, or on-premises

Execute RunbooksUXManually kick off workflows

SchedulePerform tasks on recurring schedules

WebhookStart runbook from other services(ITSM, GitHub, …)

REST APIIntegrate from 3rd-party systems / web portals

PowerShell ModuleAzureRm.Automation

Run As accountsEasily authenticate to manage Azure resourcesGet started quickly.When you create a new Automation account you can have Run As accounts created too.Soon from the UX you will be able to manage creation and deletion of Run As accounts.

Azure Run AsService principal with certificateContributor roleManage ARM resources from runbooksAssets: AzureRunAsCertificate, AzureRunAsConnection

Azure Classic Run AsCertificateManage ASC resources from runbooksAssets: AzureClassicRunAsCertificate, AzureClassicRunAsConnection

DEMOAutomation UI

NOVEMBER 25, 2016

SCHEDULING

NOVEMBER 25, 2016

Automation SchedulingTake control of your automated resource management with schedulingConfigure, start, stop, and manage resources even when you aren’t there

Previously, scheduling offered daily and hourly schedules

New Features: • Weekly – day of week• Monthly – days of the month • Time zone support – allows adjustment for daylight savings

GALLERY

NOVEMBER 25, 2016

New Gallery featuresFind Microsoft & community examples that you can use to get started on new Automation tasks Automation runbook galleryPowerShell Gallery support Additional filtering capabilities

Import modules from PowerShell GalleryBrowse from AutomationImproved deployment from PowerShell Gallery

More Gallery runbooksCommunity continue to add useful runbooks to the gallery

AUTHORING

NOVEMBER 25, 2016

Authoring updatesGraphical runbooksNew type of graphical runbook based on native PowerShellImprovements to graphical authoring and runbook capabilities

PowerShell ISE add-onAuthor textual runbooks (PowerShell, PowerShell Workflow)Continued improvements in response to feedback

Start-AzureRmAutomationRunbook cmdletAdded –Wait and –MaxWaitSeconds parametersParent runbook can now wait for child runbook to finish and send back outputEnables any runbook type to call any runbook type and get back results

More Gallery runbooksCommunity continue to add useful runbooks to the gallery

Graphical authoring updatesGraphical PowerShell runbookNew type of graphical runbook based on native PowerShellAll advantages of native PowerShell over PowerShell WorkflowStarts fast, full objects, simpler authoring

Graphical authoring improvementsObject output properties available at design timeError links & convert exception to errorCanvas restyle for readabilityWarnings for common design requirements

Graphical runbook SDK updateRelease latest version of the public-preview SDK

Uses for different runbook typesTextual runbooks• Distinct programming model• Script authoring model• Lower-level language, so more versatile• Can use existing scripts• Familiar to PowerShell (Python, Bash) users• Designer is cloud based or client (ISE)

Graphical runbooks• Distinct programming model• Visual insert-link-configure authoring model• Focus on how data flows through the process• Can visualize IT processes and systems

affected• Higher-level language, can increase

productivity• Include PowerShell script as needed• Encourages modular programming• Designer is cloud based

DEMO

NOVEMBER 25, 2016

Automating app deployment

POWERSHELL DSC OVERVIEW

NOVEMBER 25, 2016

PS DSC configuration managementSimplifies configurationPrevents configuration driftFlexible deployment optionsEnables continuous deployment

Development Test Production

Components & phasesAuthoring Phase(may include imperative as well as declarative code)

Staging Phase- Fully declarative configuration

representation using DMTF standard MOF instances

- Configuration is calculated for all nodes

“Make it So” Phase(declarative configuration is reified through imperative providers)

Powershell

3rd party languages and

tools

Configuration staging area

(contains DSC data)

Local configuration store

Parser and dispatcher

Resources

Push ModelAuthoring Phase(may include imperative as well as declarative code)





Powershell


tools

Configuration staging area

(contains DSC data)



Resources

Pull ModelAuthoring Phase(may include imperative as well as declarative code)





Powershell


tools

Pull server (contains DSC

data)



Resources

INTRODUCING AZURE AUTOMATION DSC

NOVEMBER 25, 2016

Azure Automation DSCPS DSC pull / reporting service hosted in the cloudManage physical hosts and VMs in any cloud or on-premises Windows or Linux

Part of the Azure Automation ServicePS DSC configuration, node configuration, node and resources managementImportAuthoringCompilingVersioningDistribution to nodesReportingEasy node onboarding

Azure Automation DSC

Configuration (script)

Authoring

DSC resources

Node config (MOF)

Zip

Staging

Reports REST Endpoint

Azure VM Physical server

On-prem

DEMO

NOVEMBER 25, 2016

On-boarding and configuring VMs

Powershell DSC and runbooks – better together

Use PS DSC to declaratively configure VMs / hosts

Use runbooks to orchestrate complex processes across systems

QUESTIONS

NOVEMBER 25, 2016

microsoft azure automation

Engineering