This step 8 of 10 in the post-serie “How-To: How installing a secure Service Azure Fabric Cluster (ASF) with Azure Resource Management (ARM) Template”.

In this step we register the system applications of Azure Service Fabric. We are doing this with aid of a powershell script I found here. it is also available in mine GitHub, together with ARM template for creating the Key Vaults.

Overview of the steps
01. Create and import the certificates
02. Register SF Application in AAD and create AppKey
03. Generate encrypted AppKey
04. Lookup the service principles
05. Create the Key Vaults with ARM
06. Adjust the SF Application settings
07. Upload certificates to Key Vault
08. [CURRENT] Register the Service Fabric System Applications
09. Install SF Cluster with ARM
10. Coming soon!
Step 08: Register Service Fabric System Applications <clustername>_Cluster & _Client

Before you are start this task, you have to know how you are going to name your Service Fabric Cluster. You already know this, because in step 01 when creating the certificate you supplied dns name for the SFExplorer certificate. This information is also necessary for step Step 09: Setup Service Fabric Cluster.

Run powershell script

  • Extract the content of the ZIP file.
  • Open Powershell. CD to the location where you extracted the ZIP file.
  • Run command:
    .\SetupApplications.ps1 -TenantId '<your AAD tenantId>' `
    -ClusterName '<name of your cluster>' `
    -WebApplicationReplyUrl 'https://<name of your cluster>.westeurope.cloudapp.azure.com:19080/Explore/index.html'
  • After running you get the following result:
  • Remember/Write down the value a WebAppId (is Application <clustername>_Cluster).
  • Remember/Write down the value a NativeClientAppId(is Application <clustername>_Client).
Set Roles
  • Go to the WebApp (=is Application <clustername>_Cluster) you’ve just created via App Registrations in Azure Active Directory.
  • Search for you application, when found open in it and click on it.
  • Click on the link below “Managed application in local directory”.
  • And click “users and groups” here you can add users and assign a role to them “ReadOnly” or “Admin”. Here you manage who has access to SF Explorer.

    

Next step: Step 09 – Install SF Cluster with ARM