From 795edefab57e828ef5f7fd8620e10edc95c2887a Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:32:02 -0700 Subject: [PATCH 01/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 969acf0b7..bdc9a58f0 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -2,6 +2,7 @@ ## A. Not secured cluster (SF Linux cluster) For a secured cluster, see option B. below. + You can always deploy a SF cluster through the Azure portal, as explained in this article: https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-get-started-azure-cluster However, when creating a cluster, there are quite a few configurations to take into account, like enabling the internal DNS service or Reverse Proxy service, choosing between Linux/Windows, open/publish your application ports in the load-balancer and most of all (the most complex setup) how to create a secure cluster. @@ -43,6 +44,9 @@ For example, to deploy the cluster to a new resourcegroup located in westus, go create-resources.cmd servicefabric\LinuxContainers\servicefabricdeploy qa-eshop-sflinux-resgrp -c westus ``` +You should see a similar execution to the following: +![image](https://user-images.githubusercontent.com/1712635/31638180-15da9f84-b287-11e7-9d4e-604f33690198.png) + ## Deploy eShopOnServiceFabric with Visual Studio. Alternatively, instead of using ARM templates, you can deploy eShop on service fabric directly by publishing the project eShopOnServiceFabric in eShopOnContainers-ServicesAndWebApps.sln with Visual Studio publish tool. From 3249ce3595626f81ecc23bdf4d4a1e5b3a8a334f Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:33:55 -0700 Subject: [PATCH 02/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 3 --- 1 file changed, 3 deletions(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index bdc9a58f0..9d39f1510 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -47,9 +47,6 @@ create-resources.cmd servicefabric\LinuxContainers\servicefabricdeploy qa-eshop- You should see a similar execution to the following: ![image](https://user-images.githubusercontent.com/1712635/31638180-15da9f84-b287-11e7-9d4e-604f33690198.png) -## Deploy eShopOnServiceFabric with Visual Studio. - -Alternatively, instead of using ARM templates, you can deploy eShop on service fabric directly by publishing the project eShopOnServiceFabric in eShopOnContainers-ServicesAndWebApps.sln with Visual Studio publish tool. ## B. Secured cluster (SF Linux cluster) From 181efb3da2493f4b7746f05799adebeb934c0183 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:33:59 -0700 Subject: [PATCH 03/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 1cb69f943..d2970452a 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -2,6 +2,7 @@ ## A. Not secured cluster (SF Windows cluster) For a secured cluster, see option B. below. + You can always deploy a SF cluster through the Azure portal, as explained in this article: https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-get-started-azure-cluster However, when creating a cluster, there are quite a few configurations to take into account, like enabling the internal DNS service or Reverse Proxy service, choosing between Linux/Windows, open/publish your application ports in the load-balancer and most of all (the most complex setup) how to create a secure cluster. @@ -42,9 +43,8 @@ For example, to deploy the cluster to a new resourcegroup located in westus, usi create-resources.cmd servicefabric\WindowsContainers\servicefabricdeploy qa-eshop-sfwin-resgrp -c westus ``` -## Deploy eShopOnServiceFabric with Visual Studio. +You should see a similar execution to the following: -Alternatively, instead of using ARM templates, you can deploy eShop on service fabric directly by publishing the project eShopOnServiceFabric in eShopOnContainers-ServicesAndWebApps.sln with Visual Studio publish tool. ## B. Secured cluster (SF Windows cluster) From 33c0cee673df9d78769d8b25c01c8a059d45c867 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:40:25 -0700 Subject: [PATCH 04/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 9d39f1510..2c631ad4d 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -47,6 +47,9 @@ create-resources.cmd servicefabric\LinuxContainers\servicefabricdeploy qa-eshop- You should see a similar execution to the following: ![image](https://user-images.githubusercontent.com/1712635/31638180-15da9f84-b287-11e7-9d4e-604f33690198.png) +Now, if you go to your subscription in Azure, you should be able to see the SF cluster already created and available, like in the following image: + +![image](https://user-images.githubusercontent.com/1712635/31638398-3fc08ad8-b288-11e7-879b-fc4df0daad2b.png) ## B. Secured cluster (SF Linux cluster) From 09771724f435d9ebb1441439fe05d4d2517b9273 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:44:34 -0700 Subject: [PATCH 05/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 2c631ad4d..97212132a 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -51,6 +51,8 @@ Now, if you go to your subscription in Azure, you should be able to see the SF c ![image](https://user-images.githubusercontent.com/1712635/31638398-3fc08ad8-b288-11e7-879b-fc4df0daad2b.png) +In this case, this is an unsecured SF cluster with a single node, good for initial tests and getting started with SF. + ## B. Secured cluster (SF Linux cluster) The ARM template `servicefabricdeploysecured.json` and its parameter file (`servicefabricdeploysecured.parameters.json`) are used to create a service fabric cluster environment for linux containers secured with a certificate. From 124fd82145153d764250cc2f5a85bbfb34573cf4 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:46:13 -0700 Subject: [PATCH 06/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 97212132a..0dd30eaf9 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -51,7 +51,7 @@ Now, if you go to your subscription in Azure, you should be able to see the SF c ![image](https://user-images.githubusercontent.com/1712635/31638398-3fc08ad8-b288-11e7-879b-fc4df0daad2b.png) -In this case, this is an unsecured SF cluster with a single node, good for initial tests and getting started with SF. +In this case, this is an unsecured SF cluster with a single Linux node, good for initial tests and getting started with SF. ## B. Secured cluster (SF Linux cluster) From 0e855cd74f730f87025bfe5f4cc858a39eb66c49 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:51:06 -0700 Subject: [PATCH 07/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 0dd30eaf9..9b3132757 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -55,6 +55,8 @@ In this case, this is an unsecured SF cluster with a single Linux node, good for ## B. Secured cluster (SF Linux cluster) +Within eShopOnContainers root folder, at the folder [..\deploy\az\servicefabric\LinuxContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/LinuxContainers), you can find the ARM template `servicefabricdeploysecured.json` and its parameter file (`servicefabricdeploysecured.parameters.json`) to create a secured Service Fabric cluster environment for Linux Containers (IN THIS CASE, IT IS A SECURED CLUSTER USING A CERTIFICATE). + The ARM template `servicefabricdeploysecured.json` and its parameter file (`servicefabricdeploysecured.parameters.json`) are used to create a service fabric cluster environment for linux containers secured with a certificate. ## Create Azure Keyvault service From fa92ab00bf3afe01ffdddafb6d4e06e3065e0d75 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:51:10 -0700 Subject: [PATCH 08/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index d2970452a..79bd8621c 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -9,7 +9,7 @@ However, when creating a cluster, there are quite a few configurations to take i Because of those reasons, we have created a set of ARM templates and scripts so you can create, re-create and configure the SF clusters much faster, as explained below: -Within eShopOnContainers root folder, at the folder [..\deploy\az\servicefabric\WindowsContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/WindowsContainers), you can find the ARM template `servicefabricdeploy.json` and its parameters file (`servicefabricdeploy.parameters.json`) to create a Service Fabric cluster environment for Windows Containers. +Within eShopOnContainers root folder, at the folder [..\deploy\az\servicefabric\WindowsContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/WindowsContainers), you can find the ARM template `servicefabricdeploy.json` and its parameters file (`servicefabricdeploy.parameters.json`) to create a Service Fabric cluster environment for Windows Containers (NOT SECURED CLUSTER). ## Edit the servicefabricdeploy.parameters.json file @@ -44,11 +44,18 @@ create-resources.cmd servicefabric\WindowsContainers\servicefabricdeploy qa-esho ``` You should see a similar execution to the following: +++++++++++++ IMAGE TBD ++++++++++++++ + +Now, if you go to your subscription in Azure, you should be able to see the SF cluster already created and available, like in the following image: + +++++++++++++ IMAGE TBD ++++++++++++++ + +In this case, this is an unsecured SF cluster with a single Windows node, good for initial tests and getting started with SF. ## B. Secured cluster (SF Windows cluster) -The ARM template `servicefabricdeploysecured.json` and its parameter file (`servicefabricdeploysecured.parameters.json`) are used to create a service fabric cluster environment for windows containers secured with a certificate. +Within eShopOnContainers root folder, at the folder [..\deploy\az\servicefabric\WindowsContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/WindowsContainers), you can find the ARM template `servicefabricdeploysecured.json` and its parameter file (`servicefabricdeploysecured.parameters.json`) to create a secured Service Fabric cluster environment for Windows Containers (IN THIS CASE, IT IS A SECURED CLUSTER USING A CERTIFICATE). ## Create Azure Keyvault service Go to PortalAzure and create a Keyvault service. Make sure Enable access for deployment checkboxes are selected. From 369b68bae184d7df557fb1d3ba2a5289ecc516fc Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:52:28 -0700 Subject: [PATCH 09/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 79bd8621c..058ea06f4 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -1,6 +1,6 @@ # Deploying a Service Fabric cluster based on Windows nodes -## A. Not secured cluster (SF Windows cluster) +## A. Unsecured cluster (SF Windows cluster) For a secured cluster, see option B. below. You can always deploy a SF cluster through the Azure portal, as explained in this article: https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-get-started-azure-cluster From 4895983e553690b99cb31946eb6d3e9effe668d0 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:52:31 -0700 Subject: [PATCH 10/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 9b3132757..7c9cdad1c 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -1,6 +1,6 @@ # Deploying a Service Fabric cluster based on Linux nodes -## A. Not secured cluster (SF Linux cluster) +## A. Unsecured cluster (SF Linux cluster) For a secured cluster, see option B. below. You can always deploy a SF cluster through the Azure portal, as explained in this article: https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-get-started-azure-cluster From 03d6a2abf14841cf0e55a875a37d630444fa0e51 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:58:25 -0700 Subject: [PATCH 11/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 7c9cdad1c..b916a5ecf 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -62,7 +62,7 @@ The ARM template `servicefabricdeploysecured.json` and its parameter file (`serv ## Create Azure Keyvault service Go to PortalAzure and create a Keyvault service. Make sure Enable access for deployment checkboxes are selected. - +![image](https://user-images.githubusercontent.com/1712635/31638848-9b266530-b28a-11e7-953b-1e3ec1a54f77.png) ## Generate a certificate in Azure Keyvault Execute the gen-keyvaultcert.ps1 script to generate and download a certificate from Keyvault. From 5ee8a35c398b8465734b9d6642429cf2db0f1189 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 15:58:28 -0700 Subject: [PATCH 12/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 058ea06f4..2947237b6 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -60,7 +60,7 @@ Within eShopOnContainers root folder, at the folder [..\deploy\az\servicefabric\ ## Create Azure Keyvault service Go to PortalAzure and create a Keyvault service. Make sure Enable access for deployment checkboxes are selected. - +![image](https://user-images.githubusercontent.com/1712635/31638848-9b266530-b28a-11e7-953b-1e3ec1a54f77.png) ## Generate a certificate in Azure Keyvault Execute the gen-keyvaultcert.ps1 script to generate and download a certificate from Keyvault. From 524f4b459ca05499e744c5f35a5f18da9a717f72 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 16:04:18 -0700 Subject: [PATCH 13/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 2947237b6..1d09b1d6c 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -44,11 +44,11 @@ create-resources.cmd servicefabric\WindowsContainers\servicefabricdeploy qa-esho ``` You should see a similar execution to the following: -++++++++++++ IMAGE TBD ++++++++++++++ +![image](https://user-images.githubusercontent.com/1712635/31638979-4881d7aa-b28b-11e7-873c-e1185043a9eb.png) Now, if you go to your subscription in Azure, you should be able to see the SF cluster already created and available, like in the following image: -++++++++++++ IMAGE TBD ++++++++++++++ +![image](https://user-images.githubusercontent.com/1712635/31639043-9b26c786-b28b-11e7-8d59-eeea97f74176.png) In this case, this is an unsecured SF cluster with a single Windows node, good for initial tests and getting started with SF. From ab1bb8bc75893a8ea4739fcac0bcb33f3efa4349 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 16:41:31 -0700 Subject: [PATCH 14/18] Update readme.md --- .../servicefabric/WindowsContainers/readme.md | 25 +++++++++++++++++-- 1 file changed, 23 insertions(+), 2 deletions(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 1d09b1d6c..9e42be2d7 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -63,12 +63,33 @@ Go to PortalAzure and create a Keyvault service. Make sure Enable access for dep ![image](https://user-images.githubusercontent.com/1712635/31638848-9b266530-b28a-11e7-953b-1e3ec1a54f77.png) ## Generate a certificate in Azure Keyvault -Execute the gen-keyvaultcert.ps1 script to generate and download a certificate from Keyvault. +In a POWER-SHELL window, move to the folder [..\deploy\az\servicefabric\WindowsContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/WindowsContainers). + +**Select your Azure subscription** You might have [several Azure subscriptions](https://docs.microsoft.com/en-us/cli/azure/account#set) as shown if you type the following. + + >``` + >az account list + >``` + If you have multiple subscription accounts, you first need to select the Azure subscription account you want to target. Type the following: + >``` + >az account set --subscription "Your Azure Subscription Name or ID" + >``` + +**Execute the gen-keyvaultcert.ps1 script** to generate and download a certificate from Keyvault. +Make sure you're going to run it against the Azure subscription you mean it. + +You might need to authenticate from the browser when running this PowerShell script. ``` -.\gen-keyvaultcert.ps1 -vaultName -certName -certPwd -subjectName CN=.westeurope.cloudapp.azure.com -saveDir C:\Users\\Downloads +.\gen-keyvaultcert.ps1 -vaultName -certName -certPwd -subjectName CN=.westus.cloudapp.azure.com -saveDir C:\Users\\Downloads ``` +You should see a similar execution to the following: + +![image](https://user-images.githubusercontent.com/1712635/31639818-a50ab63c-b28f-11e7-8791-bcfadeed5a56.png) + +IMPORTANT: At this point, copy/cut the .PFX certifiacte file saved in the downloads forlder and save it in a secure place. + ## Install the certificate Install the certificate under 'Current User' store location and check it as exportable. From d0225a6d87ee119242eb377aee4249d97eb9b99d Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 16:47:48 -0700 Subject: [PATCH 15/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 9e42be2d7..585ffbdc5 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -85,8 +85,7 @@ You might need to authenticate from the browser when running this PowerShell scr ``` You should see a similar execution to the following: - -![image](https://user-images.githubusercontent.com/1712635/31639818-a50ab63c-b28f-11e7-8791-bcfadeed5a56.png) +![image](https://user-images.githubusercontent.com/1712635/31640172-93efcca0-b291-11e7-970e-5b5e6bf07042.png) IMPORTANT: At this point, copy/cut the .PFX certifiacte file saved in the downloads forlder and save it in a secure place. From 0bd23e21f4c1a252f296c319d1e775641513f4dd Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 17:02:50 -0700 Subject: [PATCH 16/18] Update readme.md --- deploy/az/servicefabric/WindowsContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/WindowsContainers/readme.md b/deploy/az/servicefabric/WindowsContainers/readme.md index 585ffbdc5..0acd8716a 100644 --- a/deploy/az/servicefabric/WindowsContainers/readme.md +++ b/deploy/az/servicefabric/WindowsContainers/readme.md @@ -90,7 +90,7 @@ You should see a similar execution to the following: IMPORTANT: At this point, copy/cut the .PFX certifiacte file saved in the downloads forlder and save it in a secure place. ## Install the certificate -Install the certificate under 'Current User' store location and check it as exportable. +Install the certificate (by double-clicking on the .PFX file) under 'Current User' store location (by default location) and check it as exportable. From 6a3ab0e72c241c1f6bf229a70f7e6b6a5db34f63 Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 17:02:55 -0700 Subject: [PATCH 17/18] Update readme.md --- .../servicefabric/LinuxContainers/readme.md | 20 ++++++++++++++++++- 1 file changed, 19 insertions(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index b916a5ecf..51fc0dc7a 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -65,14 +65,32 @@ Go to PortalAzure and create a Keyvault service. Make sure Enable access for dep ![image](https://user-images.githubusercontent.com/1712635/31638848-9b266530-b28a-11e7-953b-1e3ec1a54f77.png) ## Generate a certificate in Azure Keyvault +In a POWER-SHELL window, move to the folder [..\deploy\az\servicefabric\LinuxContainers](https://github.com/dotnet-architecture/eShopOnContainers/tree/dev/deploy/az/servicefabric/LinuxContainers). + +**Select your Azure subscription** You might have [several Azure subscriptions](https://docs.microsoft.com/en-us/cli/azure/account#set) as shown if you type the following. + + >``` + >az account list + >``` + If you have multiple subscription accounts, you first need to select the Azure subscription account you want to target. Type the following: + >``` + >az account set --subscription "Your Azure Subscription Name or ID" + >``` + Execute the gen-keyvaultcert.ps1 script to generate and download a certificate from Keyvault. ``` .\gen-keyvaultcert.ps1 -vaultName -certName -certPwd -subjectName CN=.westeurope.cloudapp.azure.com -saveDir C:\Users\\Downloads ``` + +You should see a similar execution to the following: +![image](https://user-images.githubusercontent.com/1712635/31640172-93efcca0-b291-11e7-970e-5b5e6bf07042.png) + +IMPORTANT: At this point, copy/cut the .PFX certifiacte file saved in the downloads forlder and save it in a secure place. + ## Install the certificate -Install the certificate under 'Current User' store location and check it as exportable. +Install the certificate (by double-clicking on the .PFX file) under 'Current User' store location (by default location) and check it as exportable. From f0f56c3d478b7d1b9abad182d35a15a8e64343fa Mon Sep 17 00:00:00 2001 From: Cesar De la Torre Date: Mon, 16 Oct 2017 17:05:01 -0700 Subject: [PATCH 18/18] Update readme.md --- deploy/az/servicefabric/LinuxContainers/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/az/servicefabric/LinuxContainers/readme.md b/deploy/az/servicefabric/LinuxContainers/readme.md index 51fc0dc7a..2014352ae 100644 --- a/deploy/az/servicefabric/LinuxContainers/readme.md +++ b/deploy/az/servicefabric/LinuxContainers/readme.md @@ -92,7 +92,7 @@ IMPORTANT: At this point, copy/cut the .PFX certifiacte file saved in the downlo ## Install the certificate Install the certificate (by double-clicking on the .PFX file) under 'Current User' store location (by default location) and check it as exportable. - + ## Editing servicefabricdeploysecured.parameters.json file