stackoom
  简体   繁体   中英

How to register your Azure resource as an Application in Azure Active Directory?

 原文  2020-06-05 00:53:44       azure/ azure-active-directory/ azure-cdn

Question

I have an Azure CDN. It has a custom domain, and I attempting to register my own certificate for HTTPS support.

I am attempting to follow the instructions here: https://docs.microsoft.com/en-us/azure/cdn/cdn-custom-ssl?tabs=option-2-enable-https-with-your-own-certificate

I have uploaded my Certificate to a Key Vault. That should be good. I am now trying grant my Azure CDN Profile access to my Key Vault in order for it to get the certificate. That is this step in the tutorial (Register Azure CDN, step #2)

在此处输入图像描述

That step shows a GUID (205478c0-bd83-4e1b-a9d6-db63a3e1e1c8). Where is that coming from? Is that the identifier for my Azure CDN Profile? If so, where would I get that?

I also just noticed there are two commands there: The text shows New-AzADServicePrincipal, but the screenshot shows New-AzureRmADServicePrincipal. Presumably, the latter is the (older?) command based on Resource Manager. But, which one should I be using?

Also, I don't think I have Azure Powershell installed. Can I do this using Cloud Shell via the Azure Portal?

What I see when I attempt to run the command from Cloud Shell

在此处输入图像描述

1 answers

solution1
 2 ACCPTED  2020-06-05 01:55:28

That step shows a GUID (205478c0-bd83-4e1b-a9d6-db63a3e1e1c8). Where is that coming from? Is that the identifier for my Azure CDN Profile? If so, where would I get that?

The GUID is the Application ID of the multi-tenant AD App in the Microsoft tenant( microsoft.onmicrosoft.com ), when you use the New-AzADServicePrincipal with the GUID, it will create a service principal related to this AD App in your AAD tenant, which represents your CDN.

When you run the New-AzADServicePrincipal successfully, you could find it in the portal -> Azure Active Directory -> Enterprise applications in your tenant.

在此处输入图像描述

I also just noticed there are two commands there: The text shows New-AzADServicePrincipal, but the screenshot shows New-AzureRmADServicePrincipal. Presumably, the latter is the (older?) command based on Resource Manager. But, which one should I be using?

The New-AzureRmADServicePrincipal belongs to the old AzureRM module, New-AzADServicePrincipal belongs to the new Az module. You could use both of them, but I recommend you to use New-AzADServicePrincipal , because the AzureRM module was deprecated and will not be updated any more.

Also, I don't think I have Azure Powershell installed. Can I do this using Cloud Shell via the Azure Portal?

Of course, you can. Just run that in the cloud shell, no need to install any module manually.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Windows Azure: Register Application to Azure Active Directory How to connect to multiple azure active directory account to your application? How do I register my application locally created with one I created in Azure Active Directory? Adding write permission for creating Resource Groups to an Azure Active Directory Application How to get permissions in Azure Active Directory Application? How to add Owners to an Azure Active Directory Application Writing a register page for Windows Azure Active Directory Register MicroServices in Azure Active Directory (AAD) for Security Azure localisation - how to take resource files out of your packaged application? Error accessing an Azure Active Directory secured resource
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM