How to deploy Worker Role in a Resource Group? - publish

Based on my research on Stack Overflow I did not find an answer to my question. How do you deploy a Worker Role project from Visual Studio 2015 to an Azure Resource Group which already exist.
We've been able to publish a Web API 2 to the resource group but the Worker Role have different settings request when deploying which doesn't ask for a Resource Group.
First the Publish doesn't use the profile system but need to be triggered from a right click on the worker role in the solution and click Publish. From there I don't see any way to push the worker role in an existing Resource Group.

Azure Resource Groups is part of the Azure Resource Model (ARM). Cloud Services uses the older Azure Service Model (ASM), therefore Cloud Services cannot be deployed to a Resource Group.
In the Azure Portal, this is often recognized with the suffix (Classic) to the resources that lives in the ASM world. E.g. A VM can either be provisioned in ARM (Resource Manager) or ASM (Classic).
Some services bridge the ARM/ASM world with specific features. One is VNETs where VNET peering can be done across ARM and ASM:
From: https://azure.microsoft.com/en-us/documentation/articles/virtual-network-peering-overview/
A virtual network that uses the Resource Manager deployment model can be peered with another virtual network that uses this model, or with a virtual network that uses the classic deployment model. However, virtual networks that use the classic deployment model can't be peered to each other.
-Mikkel

Related

API Management virtual network object

I am learning how to create an APIM instance using Powershell using the steps give here. https://learn.microsoft.com/en-us/azure/api-management/api-management-howto-integrate-internal-vnet-appgateway
Here at one point they talk about creating a API Management virtual network object.
What exactly is API Management virtual network object ?
AFAIK,
Within the Network, to access backend services - Azure APIM Instance should be deployed in an Azure Virtual Network.
So, you would be creating the Virtual Network, subnets in that created VNet, NSGs, NSG rules for the Application Gateway, etc.
When you attach the above details (VNet, SubNet Data) in an object to the APIM Instance/Service, it can be known as APIM Virtual Network Object.

What is the difference between application console vs cluster console?

What is the difference between application console vs cluster console in openshift enterprise version. I am new to openshift and confused with terminologies. I feel that openshift is like linux kernel in our system(an analogy). On top of that are containers and to orchestrate we have kubernetes. However , the architecture of openshift is exact opposite. Please correct me.
OpenShift is just one of the available Kubernetes distributions, which adds enterprise-level services like authentication, authorization and multitenancy.
The web console provides two perspectives: Administrator and Developer. The Developer perspective provides workflows specific to developer use cases like create, deploy and monitor applications, while Administrator perspective is responsible for managing the cluster resources, users, and projects. Depending on the user's role, you will see a different set of views available in the main menu.

New developer portal of azure API management is not responding in internal VNET mode

We have several instance of APIM created a few months ago. Earlier this month we found a new developer portal. The new developer portal works fine for some of our APIM instance. However some of them have an internal VNET setup. So we configured custom domain for Gateway, New developer portal and Direct management. However, if I go the new developer portal it never loads correctly. It tries to access some endpoint of direct management and get request time out.
From the documentation:
If your API Management service is in an internal VNet, your developer
portal is only accessible from within the network. The management
endpoint's host name must resolve to the internal VIP of the service
from the machine you use to access the portal's administrative
interface. Make sure the management endpoint is registered in the DNS.
In case of misconfiguration, you will see an error: Unable to start the portal. See if settings are specified correctly in the configuration (...).
https://learn.microsoft.com/en-us/azure/api-management/api-management-howto-developer-portal#do-i-need-to-enable-additional-vnet-connectivity-for-the-new-managed-portal-dependencies

Google cloud dataflow/functions using shared VPC

Currently I'm working on a project in GCP that uses several service projects attached to a single host project using multiple subnets for mapping different environments (classic environments development, stage and production), and I'm trying to run dataflow pipelines and cloud functions that need to connect to databases hosted on VMs in a different service project. So far I have set the service account running dataflow and cloud function with Network User role for the subnet that belongs to specific environment and in case of dataflow I'm specifying the subnetwork for the pipeline on the host project, but dataflow pipelines and cloud functions are not even able to resolve database VMs host names or connect directly using internal IP address. Does anybody know how to setup similar environment?
You can use a shared VPC, which will let your accessory projects connect to the VPC of the main project.
https://cloud.google.com/vpc/docs/shared-vpc
From there you can use VPC connectors to allow your cloud functions to access internal resources. You can see this option when configuring the cloud function and hitting "more".

FIWARE: The usage of Identity Management GE

I want to use Identity Management - KeyRock GE in the FI-LAB portal (https://github.com/ging/fi-ware-idm/wiki/Using-the-FI-LAB-instance). It's said that this GE is already deployed on FI-LAB.
Can I use this GE just to control an access to my application or is there any other usage of this GE?
Also, how will it work (step-by-step) when a registered user wants to login into my application?
You have two options here. You can use the current instance of the IdM in order to offer you the authentitation and authorization or you can install your own instance of Keyrock. I recommend the first one in which you just need to create an account in the FIWARE Lab and use the keyrock to offer you security access to your applications. I think that you can go to this presentation Adding Identity Management and Access Control to your applications. in order to have deep details about the different steps that you have to follow to do the first scenario.