Video on AzureTar YouTube Channel: Integrating Terraform Enterprise with CI/CD Pipeline

Last weekend, I was invited to record a video on my friend Jorge Arteiro’s YouTube Channel AzureTar. In this video, I have demonstrated some POC code I was working on during my spare time over the last month or so – Integrating Azure DevOps and Terraform Enterprise (or Terraform Cloud). I’ve demonstrated how to use my newly published PowerShell module tfe (PSGallery, GitHub) to drive Terraform Enterprise deployment as part of your CI/CD Pipeline. You can find the recording here: https://www.youtube.com/watch?v=kC5ikBNjf-4&t=5s I’d like to thank the AzureTar hosts Jorge and Fernando for having me. I’m looking forward to recording more

Continue reading

Recording for Inside Azure Management Virtual Summit Now Available

This week, on July 23rd (US time), we had a one-day 17-hour free online event Inside Azure Management Virtual Summit. I have teamed up with my buddy Alex Verkinderen (@AlexVerkinderen) again, and delivered an updated version of our talk at Microsoft Ignite the Tour Sydney in February 2020: Azure Monitor – Design and Implement Monitoring Solution with ARM and CI/CD. In our session, we have covered and demonstrated the following in the Azure Pipeline: Using ARM What-If API in the PR build so approvers can see what changes will be made to your Azure environments. Using Microsoft Security Code Analysis

Continue reading

Use GitHub Super Linter in Azure Pipelines

Recently, GitHub has released an open-sourced tool called Super Linter (Blog, Repo). It’s basically a swiss army knife of linters for a collection of languages. This is really cool since I can replace many language-specific tests with a single tool. At the time of writing this article, it already supports many popular languages such as Dockerfile, Golang, JavaScript, JSON, Markdown, YAML, Python3, PHP, Terraform, PowerShell, bash, and many more. The full list is documented on the README file on the GitHub repo. Although the GitHub Super Linter is designed to be used in GitHub Actions, it runs on a container

Continue reading

Deploying Containerized Socks5 Proxy Server Using ACR, ACI and Azure DevOps

Background In certain parts of the world, some of the popular apps and services that I use daily are blocked by state-owned firewalls. Couple of years ago, before we went to that part of the world for family holiday, I looked into setting up proxy servers on the public cloud so we can actually use our Android phones when we are over there. One of my high school friends told me he’s using a popular Socks5 proxy server called Shadowsocks hosted on a GCP VM instance. Shadowsocks is a Linux based server, it is extremely easy to setup, and it

Continue reading

Configuring Azure Management Group Hierarchy Using Azure DevOps

Previously, I have published a 3-part blog series on deploying Azure Policy Definitions via Azure DevOps (Part 1, Part 2, Part 3). It covered one aspect of implementing Azure Governance using code and pipelines. There are at least 2 additional areas I haven’t covered: Configuring Management Group hierarchy Policy & Initiative assignments In this post, I’ll cover how I managed to implement the management group hierarchy using Azure DevOps. I will cover policy & initiative assignment in a future blog post. Problem Statement Before I dive into the technical details, I’d like to firstly explain why is this required? In

Continue reading

Deploying Azure Policy Definitions via Azure DevOps (Part 3)

This is the 3rd and final installment of the 3-part blog series. You can find the other parts here: Part 1: Custom deployment scripts for policy and initiative definitions Part 2: Pester-test policy and initiative definitions in the build pipeline Part 3: Configuring build (CI) and release (CD) pipelines in Azure DevOps In this part, I will walk through how I configured the build and release pipelines for deploying policy and initiative definitions at scale. Pre-requisites The following pre-requisistes are required before start creating the pipelines: 1. Creating Azure AD Service Principals We need to create service principals in each

Continue reading

Deploying Azure Policy Definitions via Azure DevOps (Part 2)

This is the 2nd installment of the 3-part blog series. You can find the other parts here: Part 1: Custom deployment scripts for policy and initiative definitions Part 2: Pester-test policy and initiative definitions in the build pipeline Part 3: Configuring build (CI) and release (CD) pipelines in Azure DevOps In this part, I will walk through the PowerShell module I have developed to pester-test policy and initiative definitions. My intention is to uses these tests to perform syntax validation in the build pipeline, ensure all the definition files are valid before being deployed in the release pipelines. You can

Continue reading

My Views on the Native Source Control Option in Azure Automation

Few weeks ago, I saw a two separate discussions in different closed community channels regarding to the Source Control option in Azure Automation accounts, more specifically – when will the support for VSTS become available. In the Azure Portal, it has been showing “coming soon”. According to Wikipedia, “Visual Studio Online” has been renamed to Visual Studio Team Services (VSTS) in November 2015: On 13 November 2013, Microsoft announced the release of a software as a service offering of Visual Studio on Microsoft Azure platform; at the time, Microsoft called it Visual Studio Online. Previously announced as Team Foundation Services,

Continue reading
%d bloggers like this: