SQLAOAGAZURE/01_createEnvironment.ps1 at main · bohlrich/SQLAOAGAZURE · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
# Azure Account verbinden
# Connect-AzAccount

# Abo anzeigen
# Get-AZSubscription | Sort-Object Name | Select-Object Name

# Subscription festlegen
$subscrName="Nutzungsbasierte Bezahlung"
Select-AzSubscription -SubscriptionName $subscrName

# Resourcegroup erstellen
# Locations lassen sich so anzeigen
# Get-AzLocation | Select-Object Location
$rgName="50108"
$locName="germanywestcentral"
New-AZResourceGroup -Name $rgName -Location $locName

# Neuen Storage Account erstellen
$saName="50108sa"
New-AZStorageAccount -Name $saName -ResourceGroupName $rgName -Type Standard_LRS -Location $locName

# Neues Netzwerk für die Testumgebung erstellen
$testSubnet=New-AZVirtualNetworkSubnetConfig -Name SQLSrvrSubnet -AddressPrefix 10.0.0.0/24
New-AZVirtualNetwork -Name SQLSrvrVnet -ResourceGroupName $rgName -Location $locName -AddressPrefix 10.0.0.0/16 -Subnet $testSubnet -DNSServer 10.0.0.4
$rule1 = New-AZNetworkSecurityRuleConfig -Name "RDPTraffic" -Description "Allow RDP to all VMs on the subnet" -Access Allow -Protocol Tcp -Direction Inbound -Priority 100 -SourceAddressPrefix Internet -SourcePortRange * -DestinationAddressPrefix * -DestinationPortRange 3389
$rule2 = New-AZNetworkSecurityRuleConfig -Name "WinRMTraffic" -Description "Allow WinRM to all VMs on the subnet" -Access Allow -Protocol Tcp -Direction Inbound -Priority 110 -SourceAddressPrefix Internet -SourcePortRange * -DestinationAddressPrefix * -DestinationPortRange 5986
New-AZNetworkSecurityGroup -Name SQLSrvrSubnet -ResourceGroupName $rgName -Location $locName -SecurityRules $rule1, $rule2
$vnet=Get-AZVirtualNetwork -ResourceGroupName $rgName -Name SQLSrvrVnet
$nsg=Get-AZNetworkSecurityGroup -Name SQLSrvrSubnet -ResourceGroupName $rgName
Set-AZVirtualNetworkSubnetConfig -VirtualNetwork $vnet -Name SQLSrvrSubnet -AddressPrefix "10.0.0.0/24" -NetworkSecurityGroup $nsg
$vnet | Set-AzVirtualNetwork

# Active Directory Windows Server erstellen
# Create an availability set for domain controller virtual machines
New-AZAvailabilitySet -ResourceGroupName $rgName -Name dcAvailabilitySet -Location $locName -Sku Aligned -PlatformUpdateDomainCount 5 -PlatformFaultDomainCount 2
# Create the domain controller virtual machine
$vnet=Get-AZVirtualNetwork -Name SQLSrvrVnet -ResourceGroupName $rgName
$pip = New-AZPublicIpAddress -Name adVM-NIC -ResourceGroupName $rgName -Location $locName -AllocationMethod Dynamic
$nic = New-AZNetworkInterface -Name adVM-NIC -ResourceGroupName $rgName -Location $locName -SubnetId $vnet.Subnets[0].Id -PublicIpAddressId $pip.Id -PrivateIpAddress 10.0.0.4
$avSet=Get-AZAvailabilitySet -Name dcAvailabilitySet -ResourceGroupName $rgName
$vm=New-AZVMConfig -VMName adVM -VMSize Standard_D1_v2 -AvailabilitySetId $avSet.Id
$vm=Set-AZVMOSDisk -VM $vm -Name adVM-OS -DiskSizeInGB 128 -CreateOption FromImage -StorageAccountType "Standard_LRS"
$diskConfig=New-AZDiskConfig -AccountType "Standard_LRS" -Location $locName -CreateOption Empty -DiskSizeGB 20
$dataDisk1=New-AZDisk -DiskName adVM-DataDisk1 -Disk $diskConfig -ResourceGroupName $rgName
$vm=Add-AZVMDataDisk -VM $vm -Name adVM-DataDisk1 -CreateOption Attach -ManagedDiskId $dataDisk1.Id -Lun 1
$cred=Get-Credential -Message "Type the name and password of the local administrator account for adVM."
$vm=Set-AZVMOperatingSystem -VM $vm -Windows -ComputerName adVM -Credential $cred -ProvisionVMAgent -EnableAutoUpdate
$vm=Set-AZVMSourceImage -VM $vm -PublisherName MicrosoftWindowsServer -Offer WindowsServer -Skus 2019-Datacenter -Version "latest"
$vm=Add-AZVMNetworkInterface -VM $vm -Id $nic.Id
New-AZVM -ResourceGroupName $rgName -Location $locName -VM $vm

# Jetzt sollte auf dem neuen Windows Server zunächst die Rolle für den Domain Controller installiert werden und anschließend dcpromo ausgeführt werden
# -> Dazu kann das Skript createActiveDirectory.ps1 benutzt werden

# Festlegen der Namen für die zu erstellenden Maschinen
$servers = @("sql5010801","sql5010802")
$i = 5

foreach($server in $servers)
{
    # Festlegen des Names für den ersten SQL Server Knoten
    $vmDNSName="$server"
    # Resourcegruppe aus dem 01_createEnvironment.ps1
    $locName=(Get-AZResourceGroup -Name $rgName).Location
    Test-AZDnsAvailability -DomainQualifiedName $vmDNSName -Location $locName

    # Set up key variables
    $subscrName="Nutzungsbasierte Bezahlung"
    $vmDNSName="$server"
    # Set the Azure subscription
    Select-AzSubscription -SubscriptionName $subscrName
    # Get the Azure location and storage account names
    $locName=(Get-AZResourceGroup -Name $rgName).Location
    $saName=(Get-AZStorageaccount | Where {$_.ResourceGroupName -eq $rgName}).StorageAccountName
    # Create an availability set for SQL Server virtual machines
    New-AZAvailabilitySet -ResourceGroupName $rgName -Name sqlAvailabilitySet -Location $locName -Sku Aligned  -PlatformUpdateDomainCount 5 -PlatformFaultDomainCount 2
    # Specify the virtual machine name and size
    $vmName="$server"
    $vmSize="Standard_D3_v2"
    $vnet=Get-AZVirtualNetwork -Name "SQLSrvrVnet" -ResourceGroupName $rgName
    $avSet=Get-AZAvailabilitySet -Name sqlAvailabilitySet -ResourceGroupName $rgName
    $vm=New-AZVMConfig -VMName $vmName -VMSize $vmSize -AvailabilitySetId $avSet.Id
    # Create the NIC for the virtual machine
    $nicName=$vmName + "-NIC"
    $pipName=$vmName + "-PublicIP"
    $pip=New-AZPublicIpAddress -Name $pipName -ResourceGroupName $rgName -DomainNameLabel $vmDNSName -Location $locName -AllocationMethod Dynamic
    $nic=New-AZNetworkInterface -Name $nicName -ResourceGroupName $rgName -Location $locName -SubnetId $vnet.Subnets[0].Id -PublicIpAddressId $pip.Id -PrivateIpAddress "10.0.0.$i"
    # Create and configure the virtual machine
    $cred=Get-Credential -Message "Type the name and password of the local administrator account for sqlVM."
    $vm=Set-AZVMOSDisk -VM $vm -Name ($vmName +"-OS") -DiskSizeInGB 128 -CreateOption FromImage -StorageAccountType "Standard_LRS"
    $vm=Set-AZVMOperatingSystem -VM $vm -Windows -ComputerName $vmName -Credential $cred -ProvisionVMAgent -EnableAutoUpdate
    $vm=Set-AZVMSourceImage -VM $vm -PublisherName MicrosoftWindowsServer -Offer WindowsServer -Skus 2019-Datacenter -Version "latest"
    $vm=Add-AZVMNetworkInterface -VM $vm -Id $nic.Id
    New-AZVM -ResourceGroupName $rgName -Location $locName -VM $vm

    $i++
}