Spark the future.

Tao Yang & Pete Zerger

Azure Automation

ARC311

Introductions

Pete ZergerMicrosoft MVP

Principal Program Manager, Cireson

@pzerger

Tao YangMicrosoft MVP

Independent Consultant, TY Consulting

@MrTaoYang

Agenda

Azure Automation Introduction Runbook Authoring Experience Enterprise Portal Integration PowerShell DSC Hybrid Runbook Worker Integration Scenarios

Automation platforms

ORCHESTRATOR

• Simple drag-and-drop authoring experience

• Integration with dozens of platforms

• Challenges with parallelism, restart behavior

SMA

• PowerShell Workflow based engine

• Control parallelism, restart behavior

• No UI, component integration by you

AZURE AUTOMATION

• PowerShell Workflow

• Native PowerShell

• Basic Authoring UI

• Source Control Integration

• DSC Support

Typical Azure Automation Scenarios

Patch Azure IaaS VMs without downtime, leveraging Traffic manager.

Orchestrate patching of applications in your data center with System Center 2012 / 2016.

SQL Backup on a schedule.

Backup and restore Azure or Hyper-V VMs.

Deploy a VM on an Azure / On-Premise cloud and enable monitoring for the VM.

Deploy applications to requesting users as part of a self-service automation strategy.

Deploy application from Git, run validation tests, and swap to production if tests pass.

Automate onboarding of new users in Office 365.

Automate remediation of issues raised in OpsMgr and OMS alerts

Start up and shut down development and test environments on a schedule.

Monitor for when a new service gets created, and configure it for the right tracing / backup policy.

Notify users who have underutilized Azure or Hyper-V VMs and perform remediation.

Patch / Update / Backup

Orchestration

Change Control & Provisioning

Monitoring & Remediation

Automation Accounts & Dashboard

Create Automation AccountsOrganize your automation by group or individual contributorAccounts can live in different regionsCreate up to 30 accounts

Use Automation DashboardOperational dashboard for analysis and troubleshootingQuickly access “problem” jobs to get up and running quickly

Automation Dashboard

Dashboard ViewView runbook jobs over timeFind jobs that may need attention

Runbooks ViewFiltering of jobs based on status and dateIdentify authoring state (New, In edit, Published)Filter by tags to group related runbooks

Jobs ViewHistory of jobs per runbookWho last updated and whenInput parameters and outputDrill into each job to view streams generated to help troubleshootingStop, Suspend and Resume job

Manage Runbooks & Jobs

Manage Global Assets Add additional integration modules Update to new module versions Create / manage credentials Create / manage connections Create / manage variables Manage Schedules

Manage Automation Assets

DEMO: Quick Tour of Azure Automation

Runbook Authoring Options

PowerShell ISE

Azure Portal

Both script and visual authoring

Author from anywhere

Not an optimal scripting interface

Author, test and publish from local PowerShell ISE

instance

Create and test assets locally

PowerShell ISE Add-In

• Enables use of the Automation activities (Get-AutomationVariable, Get-AutomationPSCredential, etc.) in local PowerShell Workflows

Use Automation Activities

• Allows creating and editing the values of Automation assets locally

Create & Edit Assets

• Allows easy tracking of local changes to runbooks and assets vs the state of these items in an Azure Automation account

Track State & Changes

• Allows syncing of runbook / asset changes between a local authoring environment and an Azure Automation account

Sync Changes

• Allows testing of PowerShell workflow scripts locally in the ISE and also in the automation service without changing the runbook

Test & Publish Runbooks

DEMO: PowerShell & GUI Runbooks

Monitoring

Manual Tasks

Patch Remediation

Backup

Disaster Recovery

Incidents Response

VM Lifecycle Mgmt.

Change Control

Release Mgmt.

Enable Automation Across Azure resources and external systems

Monitor SharePoint for new deployment in staging

SharePointReleaseManagement

Ap

ply

ing

Polic

y

Compliance

Provisioning

SLA Adherence

Deploy to production

Update SharePoint with progress

Apply policy to the deployment in staging

Update SharePoint with progress

DEMO: SharePoint in Hybrid Self-Service

What is PowerShell DSC

• DSC is a new management platform in Windows PowerShell

• Enables deploying and managing configuration data for software services and environments• Enabling or disabling server

roles and features• Managing registry settings• Managing files and directories• Starting, stopping, and

managing processes and services• Managing groups and user

accounts

• Deploying new software• Managing environment variables• Running Windows PowerShell

scripts• Fixing a configuration that has

drifted away from the desired state• Discovering the actual

configuration state on a given node

Com

mon

Use

s

DSC in Azure Automation

Features: Accessible thru

PowerShell UI in Azure Preview

Portal

Requirements: Requires WMF 5

Limitations:As of today, no support for…. Partial and composite

configurations Side-by-side module

support Auto-certificate renewal Passing ConfigurationData Automation Asset

DEMO: DSC in Azure Automation

New Automation Capabilities

Built-in integration with on-premises systems and PowerShell DSC nodes Run Azure Automation

runbooks on-premises

Automation accessible via new REST API (including GitHub, VSO and ARM)

Graphical workflow-authoring tool

Runbook Management from the new Microsoft Azure portal

Azure Automation

Operations Management

Suite Hybrid Runbook

Worker

On-premises

Hybrid Worker in Azure Automation

An on-prem server running MS Mgmt Agent

Executes runbooks downloaded from AA

Reports results back to AA and OMS

Can be deployed in groups for high availability

Requires no ports (outside-in)

Runbook Environme

nt

Microsoft Mgmt Agent

Integration with Azure Automation

System Center

or other enterprise

management tools

Easily trigger via

Webhooks

Requires a simple runbook in

PowerShell

Leverage Azure Automation

Hybrid Worker

DEMO: Hybrid Worker Automation Scenarios

OMS Search API

Issue direct query

Invoke a saved search

Export and import saved search in

bulk

Enables direct programmatic access to OMS Log Search capabilities of OMS

Exposes the RESTful Azure Resource Manager API

Supported use cases include:

Custom PowerShell modules for OMS Search API ease the process of programmatic access

Hide complexity of arm client / RESTful API behind friendly PowerShell cmdlets

OMS Search PowerShell Modules

CommunityMicrosoft Available on GitHub

A bit more basic than the community-developed module

(today)

Available on GitHub

Developed by multiple MVPs & a Microsoft PFE

DEMO: Azure Automation Integration with OMS

Pricing

Process AutomationBased on how much time (in minutes) your runbook jobs execute in the system

Desire State ConfigTotal number of runbooks you have in the system

Support and SLA• 99.9% planned job start

time• Support starting at $29 /

mth

Recap and Next Steps

Azure Automation is a great foundation for a hybrid automation strategy! Start small, gain quick wins to show value Integrate with enterprise tools to deliver on

more complex scenarios Download the samples from Azure

Marketplace (and this session) Use your MSDN benefits to explore the

possibilities!

Resources Sample Runbooks from this Session

https://github.com/tyconsulting/AUIgnite2015

Azure Automation Add-in for PowerShell ISEhttps://github.com/azureautomation/azure-automation-ise-addon

OMSSearch PowerShell Module (community)https://www.powershellgallery.com/packages/OMSSearch/

PowerShell Module for OMS Search API (MS) https://github.com/tiander/OMSsearchAPI

OpsMgrExtended PowerShell Modulehttp://www.tyconsulting.com.au/portfolio/opsmgrextended-powershell-and-sma-module/

Importing / Export OMS Saved Queries http://overcast.info/2015/11/importing-saved-searches-into-your-oms-workspaces-2/

Complete your session evaluation on My Ignite for your chance to win one of many daily prizes.

Continue your Ignite learning pathVisit Microsoft Virtual Academy for free online training visit https://www.microsoftvirtualacademy.com

Visit Channel 9 to access a wide range of Microsoft training and event recordings https://channel9.msdn.com/

Head to the TechNet Eval Centre to download trials of the latest

Microsoft products http://Microsoft.com/en-us/evalcenter/

© 2015 Microsoft Corporation. All rights reserved.Microsoft, Windows and other product names are or may be registered

trademarks and/or trademarks in the U.S. and/or other countries.MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY,

AS TO THE INFORMATION IN THIS PRESENTATION.