Open sdfarquhar opened 6 months ago
ykuijs
commented
6 months ago Hi @sdfarquhar, I haven't tested with Azure Automation so am not sure if that will work. I am working on an update of the whitepaper where I will be using Azure Hosted Agents instead of a self hosted VM. I am in the process of updating the code and incorporating these changes into the whitepaper. But unfortunately I cannot provide an ETA when that will be ready.
sdfarquhar
commented
3 months ago Hello, I was wondering if the whitepaper was update with details on using Azure Hosted Agents?
ykuijs
commented
3 months ago We are currently still implementing improvements for a demo that is planned for next Tuesday. There are still some backlog items that need to get implemented as well, but I want to start working on updating the whitepaper as soon as possible.
sdfarquhar
commented
3 months ago With the solution using Azure Hosted Agents does this mean there is no need for an Azure Key Vault? Essentially can the Azure Hosted Agents use a System Managed Identity?
ykuijs
commented
3 months ago The need for an Azure KeyVault is still there. The certificates are stored in there, so they can be used by the Microsoft Hosted Agents.
The Microsoft Hosted Agent is a VM that is hosted by Microsoft (the name says it all 😉) and is provided to you as needed. This VM contains a default set of applications, tools, modules, etc. Everything that you need additionally (for example Microsoft365DSC and your certificates), you have to install yourself.
As soon as you are done with the VM (your pipeline is done running), the VM is returned to Microsoft, where it is cleaned and repurposed. This means you don't have to run any infrastructure yourself.
sdfarquhar
commented
3 months ago Thanks for the clarification on this. I'm very much looking forward to reading the updated whitepaper!
Hello Yorick,
Your document "Managing Microsoft 365 in true DevOps style with Microsoft365DSC and Azure DevOps" is very informative. I have been experimenting with Microsoft 365 DSC and Azure Automation (with managed identities) and was wondering if you knew if Azure Automation could be used instead of using virtual machines to interact with pipelines built in Azure DevOps?