Setup Gitlab Continuous (CI/CD) on Azure
Deploy Ubuntu VM with Docker Engine Setup Gitlab on Ubuntu Deploy Webapp Setup Gitlab Continuous (CI/CD) Step-by-step video Deploy Ubuntu VM with Docker Engine Go to https://gitlab.com/daveRendon/ubuntu-vm-with-docker-engine/blob/master/README.md and deploy to Azure Provide the parameters for the VM and click purchase Once the VM is provisioned go to the VM configuration and change the IP Address to Static Connect to the VM using SSH Setup Gitlab Connect to the Ubuntu VM via SSH Install and configure the necessary dependencies sudo apt-get update sudo apt-get install -y curl openssh-server ca-certificates Install Postfix sudo apt-get install -y postfix During Postfix installation a configuration screen may appear. Select 'Internet Site' and press enter. Use your server's external DNS for 'mail name' and press enter. If additional screens appear, continue to press enter to accept the defaults Add the GitLab package repository curl https://packages.gitlab.com/install/repositories/gitlab/gitlab-ee/script.deb.sh | sudo bash Install the GitLab package. Change https://gitlab.example.comto the URL at which you want to access your GitLab instance. sudo EXTERNAL_URL="https://gitlab.example.com" apt-get install gitlab-ee Browse to the hostname and login using the default account's username root to login In this case> http://gitlabs.eastus.cloudapp.azure.com Deploy webapp on azure Deploy ARM Template using Azure Portal: https://gitlab.com/daveRendon/ifreeze/blob/master/webapp.js Create Gitlab project on Azure Access to Gitlab on Azure http://gitlabs.eastus.cloudapp.azure.com Create new project Generate your SSH Key https://gitlab.com/help/ssh/README#generating-a-new-ssh-key-pair Setup Gitlab Continuous (CI/CD) on Azure Go to the Azure web app Choose Deployment Center Select Source Control "External" and click Continue Now in Build Provider select "App Service Build Service" Add the Gitlab URL and the master branch In choose Private Repository "YES" and provide the credentials, in this case user root and the password previously created Test changes on the Gitlab project running on Azure Step-by-Step video https://youtu.be/naSdpfOuaUo
Ocp-Apim-Subscription-Key for Service to Service calls
I want to require a Ocp-Apim-Subscription-Key when calling an API that is managed using Azure API Management. If I am calling the API from another API, what Ocp-Apim-Subscription-Key should I use? Do I need to set up a "User" in Azure API Management that represents the calling API and add that User to a Product that has access to my API? Seems silly to have to add a fake user that represents an unattended call to my API.Azure Application Proxy usage and AD Premium/licensing
Hi, question regarding license requirements for Azure Application Proxy. the person configuring AAP requires an AD Premium license, what other requirements are there around AAP and the need for AD Premium licensing? what features do end users need to be consuming via AAP to require an AD Premium license? is it only conditional access? is it for all authenticated publishing usage? i cant find any firm difinitive definitions of which features require strict licensing, either from a functional basis (i believe currently that conditional access requires AD Premium end user license in order for it to actually work) as opposed to a pure licensed service basis (any user can authenticate and sign in, but should that access be licensed)? any one know difinitively? or able to point me in the direction of relevant documentation? Thanks in advance PeteAzure Application Proxy URL redirect or different internal/external URL
Hi, Another Application Proxy question \o/ yay i hear you cry. Today i'm wondering if we can provide the following functionality through Application Proxy.. redirecting, or using a separate internal and external URL. For example, say you are publishing a webapp/page/site whatever on a multi purpose web host, or you just want to publish a certain vdir as the root, so someone would visit https://somewebapp-tenancy.msappproxy.net/ and in the backend they may be sent to, on the web server http://internalwebapp.internal/somevdir/ is this possible? the option to edit the external URL is greyed out and just copies what is put in the internalURL, resulting in needing to visit https://somewebapp-tenancy.msappproxy.net/somevdir/ an alternate to this would be to allow redirects at the proxy, so hitting https://somewebapp-tenancy.msappproxy.net/ would then throw you over to https://somewebapp-tenancy.msappproxy.net/somevdir/ with no user intervention or need for them to recall which vdir they require (or losing their bookmar and all emails with provided links in)? or... is this sort of internal path mapping/routing fudge more of a no-no now and its a step towards trying to remove convoluted sillyness/fudges to overcome bad practice on the web server? Regards PeteAzure Application Proxy logging
Hi, so, aiming to replace ISA/TMG with Application Proxy for a variety of use case scenarios, the main question that is arising relates to logging. are application proxy logs automatically available via OMS as they are part of Azure Active Directory authentication? what about apps with no authentication? the key information is the source IP, username, application(destination), which is available with the CSV log file download from application proxy, but the UI doesnt provide any information or automation around generating the log file, or connecting to the live data stream. the big goal being intrusion detection, identification, and tracking. is OMS the product to use for this? what if the customer wished to use splunk or some other third party option, how do we connect to/parse the logs in that instance? cheers Pete
Linking scanner & Azure
Hi all, I have a question regarding scanner (device) & Azure. I have a user who wants to scan numerous documents & when he scans it, they directly go to some folder located on Azure. I presume this would be connected to Azure Blobs Storage/Azure file share? I am missing the link how would we set it up on both sides? I mean, what are the requirements? Kind regards, DinoIntune app pending install
We have recently pushed out an MSI app through the Line of business, It went good and installed in the majority of the devices, but there are some device still showing that this app is Pending Install in the status for a long time even if the device is good in sync with Intune, So what could be the issues for this? I didn't find any support articles on this really.[QUESTION] What is "ServicePrincipal_6387***" / Microsoft Substrate Management account?
Hello Everyone, We have a situation where looking at Audit Logs in our Azure. I found an account that was created (User Adde) by something called "ServicePrincipal_6387c64b-9a8b-4bf1-92e8-******" and I can't seem to find anything relate to this account. No Applications, nothing. I googled "Microsoft Substrate Management" witch is related to the account mentioned. But nothing found. If anyone could give a light on how can I find why users are been added by this account I would appreciate. Thank you all in advance.
