Recent Posts

Most Used Categories

Azure, Microsoft

Infrastructure as Code – Deploy VMs in Azure

by Derrick Park

Plan

Code below will deploy an Azure Virtual Network, subnet, network security group, and rule to allow RDP access to two VMs.

Design

Estimated cost

Deploy

Prerequisite: Install Azure CLI
Run below code using PowerShell.

#Update based on your organizational requirements
$Location = "westus2"
$ResourceGroupName = "ActiveDirectoryOnPremRG"
$NetworkSecurityGroup = "NSG-DomainControllers"
$VNetName = "VNet-AzureVMsWestUS2"
$VNetAddress = "10.10.0.0/16"
$SubnetName = "Subnet-AzureDCsWestUS2"
$SubnetAddress = "10.10.10.0/24"
$AvailabilitySet = "AS-DomainControllers"
$VMSize = "Standard_DS1_v2"
$DataDiskSize = "20"
$AdminUsername = "azureuser"
$AdminPassword = "ChangeMe#1234"
$DomainController1 = "AZDC01"
$DC1IP = "10.10.10.11"
$DomainController2 = "AZDC02"
$DC2IP = "10.10.10.12" 

# Create a resource group.
az group create --name $ResourceGroupName `
                --location $Location

# Create a network security group
az network nsg create --name $NetworkSecurityGroup `
                      --resource-group $ResourceGroupName `
                      --location $Location

# Create a network security group rule for port 3389.
az network nsg rule create --name PermitRDP `
                           --nsg-name $NetworkSecurityGroup `
                           --priority 1000 `
                           --resource-group $ResourceGroupName `
                           --access Allow `
                           --source-address-prefixes VirtualNetwork `
                           --destination-address-prefixes VirtualNetwork `
                           --source-port-ranges "*" `
                           --direction Inbound `
                           --destination-port-ranges 3389

# Create a virtual network.
az network vnet create --name $VNetName `
                       --resource-group $ResourceGroupName `
                       --address-prefixes $VNetAddress `
                       --location $Location 

# Create a subnet
az network vnet subnet create --address-prefix $SubnetAddress `
                              --name $SubnetName `
                              --resource-group $ResourceGroupName `
                              --vnet-name $VNetName `
                              --network-security-group $NetworkSecurityGroup

# Create an availability set.
az vm availability-set create --name $AvailabilitySet `
                              --resource-group $ResourceGroupName `
                              --location $Location

# Create two virtual machines.
az vm create `
    --resource-group $ResourceGroupName `
    --availability-set $AvailabilitySet `
    --name $DomainController1 `
    --size $VMSize `
    --image Win2019Datacenter `
    --admin-username $AdminUsername `
    --admin-password $AdminPassword `
    --data-disk-sizes-gb $DataDiskSize `
    --data-disk-caching None `
    --nsg $NetworkSecurityGroup `
    --private-ip-address $DC1IP `
    --public-ip-address '""' `
    --license-type Windows_Server `
    --no-wait

az vm auto-shutdown `
    --email "derrickpark@outlook.com" `
    --webhook "https://derrickpark.com" `
    --resource-group $ResourceGroupName `
    --name $DomainController1 `
    --time 1100 

az vm create `
    --resource-group $ResourceGroupName `
    --availability-set $AvailabilitySet `
    --name $DomainController2 `
    --size $VMSize `
    --image Win2019Datacenter `
    --admin-username $AdminUsername `
    --admin-password $AdminPassword `
    --data-disk-sizes-gb $DataDiskSize `
    --data-disk-caching None `
    --nsg $NetworkSecurityGroup `
    --private-ip-address $DC2IP `
    --public-ip-address '""' `
    --license-type Windows_Server

az vm auto-shutdown `
    --email "derrickpark@outlook.com" `
    --webhook "https://derrickpark.com" `
    --resource-group $ResourceGroupName `
    --name $DomainController2 `
    --time 1100

Result

Source: https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/virtual-dc/adds-on-azure-vm

Leave a Reply

Your email address will not be published. Required fields are marked *

You may like

Protected: Certificate Authority (PKI)

January 18, 2021

Helpful Azure CLI Commands

January 18, 2021

Microsoft

AWS

VMware

Support Us!

Events

December

January 2021

February
MO
TU
WE
TH
FR
SA
SU
28
29
30
31
1
2
3
Events for January

1st

Events for January

2nd

Events for January

3rd

No Events
4
5
6
7
8
9
10
Events for January

4th

No Events
Events for January

5th

No Events
Events for January

6th

No Events
Events for January

7th

No Events
Events for January

8th

No Events
Events for January

9th

Events for January

10th

No Events
11
12
13
14
15
16
17
Events for January

11th

No Events
Events for January

12th

No Events
Events for January

13th

No Events
Events for January

14th

No Events
Events for January

15th

No Events
Events for January

16th

No Events
Events for January

17th

No Events
18
19
20
21
22
23
24
Events for January

18th

No Events
Events for January

19th

No Events
Events for January

20th

No Events
Events for January

21st

No Events
Events for January

22nd

No Events
Events for January

23rd

Events for January

24th

No Events
25
26
27
28
29
30
31
Events for January

25th

No Events
Events for January

26th

No Events
Events for January

27th

No Events
Events for January

28th

No Events
Events for January

29th

No Events
Events for January

30th

Events for January

31st

No Events
1
2
3
4
5
6
7
Close Bitnami banner
Bitnami