Recent Posts

Most Used Categories

Azure, Microsoft

Infrastructure as Code – Deploy VMs in Azure

by Derrick Park

Plan

Code below will deploy an Azure Virtual Network, subnet, network security group, and rule to allow RDP access to two VMs.

Design

Estimated cost

Deploy

Prerequisite: Install Azure CLI
Run below code using PowerShell.

#Update based on your organizational requirements
$Location = "westus2"
$ResourceGroupName = "ActiveDirectoryOnPremRG"
$NetworkSecurityGroup = "NSG-DomainControllers"
$VNetName = "VNet-AzureVMsWestUS2"
$VNetAddress = "10.10.0.0/16"
$SubnetName = "Subnet-AzureDCsWestUS2"
$SubnetAddress = "10.10.10.0/24"
$AvailabilitySet = "AS-DomainControllers"
$VMSize = "Standard_DS1_v2"
$DataDiskSize = "20"
$AdminUsername = "azureuser"
$AdminPassword = "ChangeMe#1234"
$DomainController1 = "AZDC01"
$DC1IP = "10.10.10.11"
$DomainController2 = "AZDC02"
$DC2IP = "10.10.10.12" 

# Create a resource group.
az group create --name $ResourceGroupName `
                --location $Location

# Create a network security group
az network nsg create --name $NetworkSecurityGroup `
                      --resource-group $ResourceGroupName `
                      --location $Location

# Create a network security group rule for port 3389.
az network nsg rule create --name PermitRDP `
                           --nsg-name $NetworkSecurityGroup `
                           --priority 1000 `
                           --resource-group $ResourceGroupName `
                           --access Allow `
                           --source-address-prefixes VirtualNetwork `
                           --destination-address-prefixes VirtualNetwork `
                           --source-port-ranges "*" `
                           --direction Inbound `
                           --destination-port-ranges 3389

# Create a virtual network.
az network vnet create --name $VNetName `
                       --resource-group $ResourceGroupName `
                       --address-prefixes $VNetAddress `
                       --location $Location 

# Create a subnet
az network vnet subnet create --address-prefix $SubnetAddress `
                              --name $SubnetName `
                              --resource-group $ResourceGroupName `
                              --vnet-name $VNetName `
                              --network-security-group $NetworkSecurityGroup

# Create an availability set.
az vm availability-set create --name $AvailabilitySet `
                              --resource-group $ResourceGroupName `
                              --location $Location

# Create two virtual machines.
az vm create `
    --resource-group $ResourceGroupName `
    --availability-set $AvailabilitySet `
    --name $DomainController1 `
    --size $VMSize `
    --image Win2019Datacenter `
    --admin-username $AdminUsername `
    --admin-password $AdminPassword `
    --data-disk-sizes-gb $DataDiskSize `
    --data-disk-caching None `
    --nsg $NetworkSecurityGroup `
    --private-ip-address $DC1IP `
    --public-ip-address '""' `
    --license-type Windows_Server `
    --no-wait

az vm auto-shutdown `
    --email "derrickpark@outlook.com" `
    --webhook "https://derrickpark.com" `
    --resource-group $ResourceGroupName `
    --name $DomainController1 `
    --time 1100 

az vm create `
    --resource-group $ResourceGroupName `
    --availability-set $AvailabilitySet `
    --name $DomainController2 `
    --size $VMSize `
    --image Win2019Datacenter `
    --admin-username $AdminUsername `
    --admin-password $AdminPassword `
    --data-disk-sizes-gb $DataDiskSize `
    --data-disk-caching None `
    --nsg $NetworkSecurityGroup `
    --private-ip-address $DC2IP `
    --public-ip-address '""' `
    --license-type Windows_Server

az vm auto-shutdown `
    --email "derrickpark@outlook.com" `
    --webhook "https://derrickpark.com" `
    --resource-group $ResourceGroupName `
    --name $DomainController2 `
    --time 1100

Result

Source: https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/virtual-dc/adds-on-azure-vm

Leave a Reply

Your email address will not be published. Required fields are marked *

You may like

Backup Microsoft Certificate Authority

February 3, 2021

Protected: Certificate Authority (PKI)

January 18, 2021

Microsoft

AWS

VMware

Support Us!

Events

September

October 2021

November
MO
TU
WE
TH
FR
SA
SU
27
28
29
30
1
2
3
Events for October

1st

Events for October

2nd

No Events
Events for October

3rd

No Events
4
5
6
7
8
9
10
Events for October

4th

No Events
Events for October

5th

No Events
Events for October

6th

No Events
Events for October

7th

No Events
Events for October

8th

No Events
Events for October

9th

No Events
Events for October

10th

No Events
11
12
13
14
15
16
17
Events for October

11th

No Events
Events for October

12th

No Events
Events for October

13th

No Events
Events for October

14th

No Events
Events for October

15th

No Events
Events for October

16th

No Events
Events for October

17th

No Events
18
19
20
21
22
23
24
Events for October

18th

No Events
Events for October

19th

No Events
Events for October

20th

No Events
Events for October

21st

No Events
Events for October

22nd

No Events
Events for October

23rd

No Events
Events for October

24th

No Events
25
26
27
28
29
30
31
Events for October

25th

No Events
Events for October

26th

No Events
Events for October

27th

No Events
Events for October

28th

No Events
Events for October

29th

No Events
Events for October

30th

No Events
Events for October

31st

No Events
1
2
3
4
5
6
7
Close Bitnami banner
Bitnami