This step 8 of 10 in the post-serie “How-To: How installing a secure Service Azure Fabric Cluster (ASF) with Azure Resource Management (ARM) Template”.
In this step we register the system applications of Azure Service Fabric. We are doing this with aid of a powershell script I found here. it is also available in mine GitHub, together with ARM template for creating the Key Vaults.
|Overview of the steps|
|01.||Create and import the certificates|
|02.||Register SF Application in AAD and create AppKey|
|03.||Generate encrypted AppKey|
|04.||Lookup the service principles|
|05.||Create the Key Vaults with ARM|
|06.||Adjust the SF Application settings|
|07.||Upload certificates to Key Vault|
|08.||[CURRENT] Register the Service Fabric System Applications|
|09.||Install SF Cluster with ARM|
Step 08: Register Service Fabric System Applications <clustername>_Cluster & _Client
Before you are start this task, you have to know how you are going to name your Service Fabric Cluster. You already know this, because in step 01 when creating the certificate you supplied dns name for the SFExplorer certificate. This information is also necessary for step Step 09: Setup Service Fabric Cluster.
Run powershell script
- Extract the content of the ZIP file.
- Open Powershell. CD to the location where you extracted the ZIP file.
- Run command:
.\SetupApplications.ps1 -TenantId '<your AAD tenantId>' `
-ClusterName '<name of your cluster>' `
-WebApplicationReplyUrl 'https://<name of your cluster>.westeurope.cloudapp.azure.com:19080/Explore/index.html'
- After running you get the following result:
- Remember/Write down the value a WebAppId (is Application <clustername>_Cluster).
- Remember/Write down the value a NativeClientAppId(is Application <clustername>_Client).
- Go to the WebApp (=is Application <clustername>_Cluster) you’ve just created via App Registrations in Azure Active Directory.
- Search for you application, when found open in it and click on it.
- Click on the link below “Managed application in local directory”.
- And click “users and groups” here you can add users and assign a role to them “ReadOnly” or “Admin”. Here you manage who has access to SF Explorer.
Next step: Step 09 – Install SF Cluster with ARM