Setting up a Linux Instance on Azure
Contents
As this description shows the basic setup of a Linux instance in Azure, it does not list specific prerequisites. However, depending on the use case, the following prerequisites should be considered: To log in perform the following steps: Step 1: Click on the Virtual machines or on the Marketplace icon on the home page. If you create your instance via the Marketplace icon, please select the Charon listing from the Marketplace offerings, select to create an instance, and continue with Step 3. Clicking on Virtual machines opens the virtual machines overview list. Step 2: Click on the Create link in the overview list. For a basic setup, select Azure virtual machine from the drop down list opened by the Create link. This opens the Basics tab of the Create a Virtual Machine window. Step 3: Enter your data on the Basics tab. Mandatory data are, for example: Basics tab upper part sample: Select the image from which to launch your instance and the correct size of your instance (please review the sizing requirements above). Enter the other information in accordance to your environment. Basics tab lower part sample: Please note: if your management system supports it, for RHEL 9.x, Rocky Linux 9.x, and Oracle Linux 9.x use SSH key types ECDSA or ED25519. This will allow connecting to these Charon host Linux systems using an SSH tunnel without the default crypto-policy settings on the Charon host having to be changed for less secure settings. This is, for example, important for the Charon-SSP Manager. See also: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening. Click on Next: Disks. This will open the Disks tab of the VM creation window. Step 4: Define the disks for your VM. Please note: By default, Azure VMs have one operating system disk and a temporary disk for short-term storage (mounted on /mnt/resource and not persistent). The recommended minimum system disk size is 30GB. You can attach existing additional data disks, or create new disks and attach them. Disks tab sample: Click on Next: Networking. This will open the Networking tab of the VM creation window. Step 5: Enter the necessary information in the Networking tab. On this tab, you can define the network configuration of your VM: Networking tab sample: Optionally, you can proceed to the Management, Advanced, and Tags tabs to configure additional details of your VM. However, for a basic test, this is not required. Click on Review + Create to proceed to the review screen. Step 6: additional configuration for AutoVE setup. If the instance is launched from a Charon AL marketplace image and is planned to use AutoVE licensing (instead of the public license servers), you must add the corresponding information to the instance configuration before the first launch of the instance: Valid User Data configuration options: where Please note: at least one license server must be configured at initial launch to enable AutoVE mode. Otherwise, the instance will bind to one of the public license servers operated by Stromasys. Step 7: Check the data on the Review + Create screen and create VM. Verify that the checks passed successfully and click on Create to create the VM. If key-pair was newly created, download private key: If you chose to let Azure create a new SSH key-pair, you will be asked to download the private key after clicking on the Create button, this step is very important as this is the only opportunity to download the private key, which is required to access your VM. The image below shows a sample of this prompt: The Deployment page: Create will take you to the Deployment page (possibly after downloading the private SSH key) where the current status of the deployment is displayed. Once the VM has been fully deployed, the Deployment Complete screen will be displayed. Sample Deployment Complete screen: Click on Go to resource to get to the details page of the newly created VM. The image below shows a sample of a detail page:General Prerequisites
The image you use to launch your instance and the instance type you chose determine the software and hardware of your cloud instance.
Azure Login and New Instance Launch
Logging in to your Azure account
Creating a Virtual Machine
primary_server=<ip-address>[:<port>]
backup_server=<ip-address>[:<port>]
Sample Review+Create screen:
Initial Access to the Instance
Once you have access to the instance, you can create the access you require for your applications. This section just shows the basic steps for initial access to the instance.
SSH Interactive Access
To connect to the instance interactively, you must connect as the management user of your instance. Use the following command:
$ ssh -o ServerAliveInterval=30 -i
<path-to-your-private-key>
<management-user-name>
@
<cloudhost-IP-address>
The parameter ServerAliveInterval
will protect the connection from timing out.
Please note:
- Depending on the type of connection, you will have to use either the public IP address of the cloud system or its address in a customer-specific VPN.
- The private key used must correspond to the public key installed in the authorized_keys file of the cloud instance management user. This is usually done during initial cloud instance launch.
- The management user account normally allows sudo access to privileged commands (use sudo -i).
- If the instance was created using a Stromasys-provided AL or VE marketplace image, the management user for interactive login is the user sshuser.
File Transfer with SFTP
SFTP enables file transfers to and from the cloud instance. Use the management user of your instance. The security rules must allow SSH access to allow SFTP access to the cloud instance.
Please note: Depending on the type of connection, you will have to use either the public IP address of the cloud system or its address in a customer-specific VPN.
To connect to the instance, use the following command:
$ sftp -i
<path-to-your-private-key>
<management-user-name>
@
<cloudhost-IP-address>
Please note:
- Depending on the type of connection, you will have to use either the public IP address of the cloud system or its address in a customer-specific VPN.
- The private key used must correspond to the public key installed in the authorized_keys file of the cloud instance management user. This is usually done during initial cloud instance launch.
- If the instance was created using a Stromasys-provided AL or VE marketplace image, the management user for file transfer is the user charon.
- If the user charon is used to transfer files, the home directory for the file transfer will be /charon/storage.
© Stromasys, 1999-2024 - All the information is provided on the best effort basis, and might be changed anytime without notice. Information provided does not mean Stromasys commitment to any features described.