How to manage servers using Azure Arc part 1
Introduction
In this new series we will cover how to manage your server environment using Azure Arc.
But first, what is Azure Arc?
Azure Arc is the place to manage your servers if you are allowed to have them internet connected. It simplifies governance and the management by being able to manage both cloud servers and on-prem environments. It gives you an easy overview if your servers are compliant, which is very close to how we manage clients in Microsoft Intune.
In part 1 we will cover how to get started and have your first server managed by Azure Arc.
Picture source: https://docs.microsoft.com/en-us/azure/azure-arc/media/overview/azure-arc-control-plane.png
Read more about its key features here Azure Arc overview – Azure Arc | Microsoft Docs
Overview of the series:
- Part 1 – Enabling Azure Arc (this post)
- Part 2 – Fundamental’s (log analytics and automation account)
- Part 3 – Update Management
- Part 4 – Change tracking and inventory
- Part 5 – Configuration policies
- Part 6 – Security (Defender for Servers)
Requirements
- Azure subscription
- Resource Group (I called mine “ARC”)
- Supported platforms Connected Machine agent prerequisites – Azure Arc | Microsoft Docs
- Permissions to onboard Connected Machine agent prerequisites – Azure Arc | Microsoft Docs
- Network requirements Connected Machine agent network requirements – Azure Arc | Microsoft Docs
I have a resource group called ARC.
Before proceeding we need to make sure the subscription has the resource providers ready:
When the resource providers has been added we can search for “Arc” in the portal.
Under “Add your infrastructure for free” Click Add
Under Servers click add
Generate script
Click Next
Choose the resource group you created prior to this blog post “ARC”
Choose a region and Operating system that fits you. In this case North Europe and Windows.
For governance sake add some tags that fit into your environment.
Download the script.
Add the script to the server you like to onboard.
Start PowerShell elevated
Run the script
The script will ask you to open a browser and browse https://microsoft.com/devicelogin and enter the code.
You will be asked to insert your credentials which have permission to add the server to Azure Arc
You can close the browser now
A while later it will tell you it was onboarded.
And if you go to the Azure Arc portal under servers you can now see my server and start managing it.
Summary
Modern server management using Azure Arc is cool. It really has its potential and it is easy to use. If you have not yet seen this area of managing, you better get started.
Happy testing!
References:
Azure Arc overview – Azure Arc | Microsoft Docs
Mattias Melkersen is a community driven and passionate modern workplace consultant with 20 years’ experience in automating software, driving adoption and technology change within the Enterprise. He lives in Denmark and works at Mindcore.
He is an Enterprise Mobility Intune MVP, Official Contributor in a LinkedIn group with 41.000 members and Microsoft 365 Enterprise Administrator Expert.
Mattias blogs, gives interview and creates a YouTube content on the channel "MSEndpointMgr" where he creates helpful content in the MEM area and interview MVP’s who showcase certain technology or topic.
Official Contributor here "Modern Endpoint Management":
https://www.linkedin.com/groups/8761296/
