Comments (2)
I've made a lot of progress here, and it seems to be coming together. UI testing can be viewed here.
I am going to move the KV selector and Image customizations out of the initial deployment UI. There are a couple of reasons for this.
- If we allow a user to select an existing Key Vault the deployment may not work. This is because we create a user assigned identity to access the Key Vault, and an existing vault will not have this identity with proper IAM or vault access policies. An end user selecting one of these vaults may not have IAM permissions to modify the existing vault.
- We want to create out own Key Vault to store VM secrets (domain join, local admin password, etc.)
What I propose we do is just create the Key Vault as part of the initial deployment. This will allow the selection of the vault to inject and upload certificates in the image build deployment. Since we will use GUID to help create the name it will be deterministic and allow us to hard-code the selection of just this vault in the image build template.
I am going to replace the existing Image build section with HostPool properties including scaling plans (now GA), and RDP properties.
from avdaccelerator.
closing as done
from avdaccelerator.
Related Issues (20)
- Upgrade AzFilesHybrid.zip to latest (v0.2.8) to use MS Graph instead of AAD Graph HOT 3
- Bicep - Stuck on Azure Files Domain Join (CustomScriptExtension) HOT 2
- Azure Gov Zero Trust Bug HOT 2
- Storage Account domain join HOT 4
- Session Host configuration fails to complete due to script error HOT 5
- Domain Join Password cannot contain `|` (and possibly other characters too) HOT 6
- [PLACEHOLDER] - Place a descriptive title here HOT 6
- Active Directory Group Names cannot contain spaces HOT 2
- Bicep session host template specifies explicit disk size of 128 GB HOT 3
- [Feature Request] - Deploy private endpoints for key vault and storage without private dns integration HOT 3
- The SAS Token variable is defined but never used HOT 5
- Upload configuration scripts to storage container for private link HOT 2
- [Feature request] - Versioning of DSC scripts to avoid breaking changes HOT 1
- [Question] - Storage managed identity assigned to session hosts HOT 1
- Standard storage account is not enabled for large file shares HOT 3
- Sessionhostconfig - HOT 2
- [BICEP] - deployCustomPolicyMonitoring - InvalidCreateRemediationRequest HOT 4
- Missing functionality and/or documentation for Private DNS and ADDS integration HOT 3
- AIB- Support for 22H3 HOT 4
- Azure vWAN - Support for peering the subnet to the vWAN HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from avdaccelerator.