Updated to AzureAutomation Runbooks (#16)

Updated the Modules from AzureRM to Az (as AzureRM are legacy ones) And moved from Run as account to Managed Identity as those would be deprecated as of this FY end
furmangg · Mar 21, 2023 · 02a329b · 02a329b
1 parent a12cd9a
commit 02a329b
Show file tree

Hide file tree

Showing 3 changed files with 29 additions and 53 deletions.
diff --git a/AzureAutomation/PauseAzureAS.ps1 b/AzureAutomation/PauseAzureAS.ps1
@@ -10,36 +10,20 @@ param(
 
 
 
-$connectionName = "AzureRunAsConnection"
 try
 {
-    # Get the connection "AzureRunAsConnection "
-    $servicePrincipalConnection=Get-AutomationConnection -Name $connectionName         
-
     "Logging in to Azure..."
-    Add-AzureRmAccount `
-        -ServicePrincipal `
-        -TenantId $servicePrincipalConnection.TenantId `
-        -ApplicationId $servicePrincipalConnection.ApplicationId `
-        -CertificateThumbprint $servicePrincipalConnection.CertificateThumbprint 
+    Connect-AzAccount -Identity
 }
 catch {
-    if (!$servicePrincipalConnection)
-    {
-        $ErrorMessage = "Connection $connectionName not found."
-        throw $ErrorMessage
-    } else{
-        Write-Error -Message $_.Exception
-        throw $_.Exception
-    }
+    Write-Error -Message $_.Exception
+    throw $_.Exception
 }
-$ErrorActionPreference = "Stop";
-
-
 
+$ErrorActionPreference = "Stop";
 
  # Get old status 
-$OldAsSetting = Get-AzureRmAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
+$OldAsSetting = Get-AzAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
 $OldStatus = $OldAsSetting.State
 
 
@@ -51,7 +35,7 @@ if($OldStatus -eq "Paused")
  }
  else
  {
-   $null = Suspend-AzureRmAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
+   $null = Suspend-AzAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
    Write-Output "Pausing $($ServerName) Completed. Current status: $($OldStatus)" 
 
  }

diff --git a/AzureAutomation/ProcessAzureAS.ps1 b/AzureAutomation/ProcessAzureAS.ps1
@@ -7,7 +7,7 @@
 	The runbook will process full the specified database. It will temporarily open the firewall to the current Azure Automation public IP.
 	The Azure Automation runas account needs Contributor permissions on the Azure Analysis Services server and inside SSMS you need to grant that runas account server administrator permissions.
 	The script requires the following Modules be imported in your Azure Automation account:
-	 AzureRM.AnalysisServices
+	 Az.AnalysisServices
 	 PackageManagement
 .PARAMETER serverName
     The name of your Azure Analysis Services instance. This is not the full asazure:// URI. This is just the final section saying the name of your server.
@@ -31,19 +31,25 @@ param
     [string] $CubeDatabaseName
 )
 
-$ErrorActionPreference = "Stop";
+try
+{
+    "Logging in to Azure..."
+    Connect-AzAccount -Identity
+}
+catch {
+    Write-Error -Message $_.Exception
+    throw $_.Exception
+}
 
-$runAsConnectionProfile = Get-AutomationConnection -Name "AzureRunAsConnection"      
-Add-AzureRmAccount -ServicePrincipal -TenantId $runAsConnectionProfile.TenantId `
-	-ApplicationId $runAsConnectionProfile.ApplicationId -CertificateThumbprint $runAsConnectionProfile.CertificateThumbprint | Out-Null
+$ErrorActionPreference = "Stop";
 
-$asServer = Get-AzureRmAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName
+$asServer = Get-AzAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName
 
 "Current Azure AS status: $($asServer.State)"
 
 if ($asServer.State -eq "Paused")
 {
-	$asServer | Resume-AzureRmAnalysisServicesServer -Verbose
+	$asServer | Resume-AzAnalysisServicesServer -Verbose
 }
 
 if ($asServer.FirewallConfig -ne $null)
@@ -64,9 +70,9 @@ if ($asServer.FirewallConfig -ne $null)
     $ipinfo = Invoke-RestMethod http://ipinfo.io/json
 
     #add a new AzureAutomation firewall rule
-    $newRule = New-AzureRmAnalysisServicesFirewallRule -FirewallRuleName "AzureAutomation" -RangeStart $ipinfo.ip  -RangeEnd $ipinfo.ip
+    $newRule = New-AzAnalysisServicesFirewallRule -FirewallRuleName "AzureAutomation" -RangeStart $ipinfo.ip  -RangeEnd $ipinfo.ip
     $asServer.FirewallConfig.FirewallRules.Add($newRule)
-    Set-AzureRmAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName -FirewallConfig $asServer.FirewallConfig
+    Set-AzAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName -FirewallConfig $asServer.FirewallConfig
 
     "Updated Azure AS firewall to allow current Azure Automation Public IP: " + $ipinfo.ip
 }
@@ -128,6 +134,6 @@ if ($asServer.FirewallConfig -ne $null)
     #reset firewall to the state it was in before this script started
     $asServer.FirewallConfig.FirewallRules.Clear()
     $asServer.FirewallConfig.FirewallRules.AddRange($rulesBackup)
-    Set-AzureRmAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName -FirewallConfig $asServer.FirewallConfig
+    Set-AzAnalysisServicesServer -ResourceGroupName $resourceGroupName -Name $serverName -FirewallConfig $asServer.FirewallConfig
     "Reset Azure AS firewall rules"
 }
diff --git a/AzureAutomation/ResumeAzureAS.ps1 b/AzureAutomation/ResumeAzureAS.ps1
@@ -10,36 +10,22 @@ param(
 
 
 
-$connectionName = "AzureRunAsConnection"
+
 try
 {
-    # Get the connection "AzureRunAsConnection "
-    $servicePrincipalConnection=Get-AutomationConnection -Name $connectionName         
-
     "Logging in to Azure..."
-    Add-AzureRmAccount `
-        -ServicePrincipal `
-        -TenantId $servicePrincipalConnection.TenantId `
-        -ApplicationId $servicePrincipalConnection.ApplicationId `
-        -CertificateThumbprint $servicePrincipalConnection.CertificateThumbprint 
+    Connect-AzAccount -Identity
 }
 catch {
-    if (!$servicePrincipalConnection)
-    {
-        $ErrorMessage = "Connection $connectionName not found."
-        throw $ErrorMessage
-    } else{
-        Write-Error -Message $_.Exception
-        throw $_.Exception
-    }
+    Write-Error -Message $_.Exception
+    throw $_.Exception
 }
-$ErrorActionPreference = "Stop";
-
 
+$ErrorActionPreference = "Stop";
 
 
  # Get old status 
-$OldAsSetting = Get-AzureRmAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
+$OldAsSetting = Get-AzAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
 $OldStatus = $OldAsSetting.State
 
 
@@ -51,7 +37,7 @@ if($OldStatus -eq "Succeeded")
  }
  else
  {
-   $null = Resume-AzureRmAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
+   $null = Resume-AzAnalysisServicesServer -ResourceGroupName $ResourceGroupName -Name $ServerName
    Write-Output "Resuming $($ServerName) Completed. Current status: $($OldStatus)" 
 
  }