Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
azure-gettingstarted [2020_06_29 21:42]
steven [Use Cases]
azure-gettingstarted [2021_07_27 13:46] (current)
dan
Line 1: Line 1:
 # Getting Started with Microsoft Azure # Getting Started with Microsoft Azure
 +##### last updated July 27, 2021
  
 {{ azure-gettingstarted:​ms-azure_logo_horiz_c-gray_rgb.png?​400 |nobox}} {{ azure-gettingstarted:​ms-azure_logo_horiz_c-gray_rgb.png?​400 |nobox}}
Line 11: Line 12:
 ## Architecture ## Architecture
  
-### Single VM Deployment +#### Single VM Deployment
  
 For evaluation and smaller production environments the Enterprise File Fabric™ solution is typically deployed as a single virtual machine. The virtual machine includes an embedded database and search index. For evaluation and smaller production environments the Enterprise File Fabric™ solution is typically deployed as a single virtual machine. The virtual machine includes an embedded database and search index.
  
-A single virtual machine can be launched directly from the Azure Marketplace ​(Coming Soon)+A single virtual machine can be launched directly from the Azure Marketplace. ​
  
  
-### Multiple VM Deployment+#### Multiple VM Deployment
  
 The Enterprise File Fabric solution may also be deployed for High Availability with multiple virtual machines and a separate database. The Enterprise File Fabric solution may also be deployed for High Availability with multiple virtual machines and a separate database.
Line 27: Line 27:
 For production deployments see also [[sizingguide]]. For production deployments see also [[sizingguide]].
  
-### Requirements+## Requirements
  
 You will need the following information before you can complete setup on Azure: You will need the following information before you can complete setup on Azure:
  
  * A domain name (recommended)  * A domain name (recommended)
- * License key (required) - A trial key can be requested from https://​www.storagemadeeasy.com/​appform/​.+ * License key (required) - A trial key can be requested from [Enterprise File Fabric Sign Up](https://​www.storagemadeeasy.com/​appform/​).
  * Outbound mail relay information. (recommended)  * Outbound mail relay information. (recommended)
  * Default storage system connectivity details - for example, Azure Blob Storage (required)  * Default storage system connectivity details - for example, Azure Blob Storage (required)
Line 38: Line 38:
  
  
-## Launch from Azure Marketplace+## Azure Marketplace
  
-**COMING SOON**+From [[https://​azuremarketplace.microsoft.com/​en-us/​marketplace/​apps/​storage_made_easy.file_fabric|Azure Marketplace]] navigate to the [[https://​azuremarketplace.microsoft.com/​en-us/​marketplace/​apps/​storage_made_easy.file_fabric|Enterprise File Fabric App]].
  
 +[[https://​azuremarketplace.microsoft.com/​en-us/​marketplace/​apps/​storage_made_easy.file_fabric|{{:​azure-gettingstarted/​azure-mktplace-getitnow.png}}]]
  
  
 +Select **"GET IT NOW"** and log in with a Microsoft Account.
  
 +{{ :​azure-gettingstarted:​create-this-app.png?​600 |}}
  
-## Setting Up Instance+Add contact information if requested and select **"​Continue"​**.
  
 +{{ :​azure-gettingstarted:​azure-mktplace-create.png?​500 |}}
  
-### SSH Access+Select **"​Create"​** to //Create a Virtual Machine//​. 
 + 
 +## Create a Virtual Machine 
 + 
 +Choose where you wish to deploy the appliance:​ 
 + 
 +1. Check **Subscription** 
 +2. Check **Resource Group** 
 + 
 +{{ :​azure-gettingstarted:​create-vm-basics-project-details.png?​600 |}}  
 + 
 +Enter a **Virtual Machine Name** such as "​file-fabric"​. It will also be the default hostname. 
 + 
 +{{ :​azure-gettingstarted:​create-vm-basics-instance-details.png?​750 |}} 
 + 
 +Enter the Username **smeconfigure** and either create or use an existing SSH key. 
 + 
 +{{ :​azure-gettingstarted:​create-vm-basics-admin-account.png?​750 |}}  
 + 
 +Select "​**Next:​ Disks**"​ and change the **"OS disk type"​** to //Standard SSD//. 
 + 
 +{{ :​azure-gettingstarted:​create-vm-disks.png?​600 |}} 
 + 
 +Then select **"​Review + create"​**. 
 + 
 +Select **"​Create"​**. 
 + 
 +## Configure Domains 
 + 
 +#### SSH Access
  
 The instance can now be accessed at this IP address using a standalone SSH client. The username is **smeconfiguser**. For example: The instance can now be accessed at this IP address using a standalone SSH client. The username is **smeconfiguser**. For example:
Line 64: Line 97:
  
  
-### SSL Configuration (Recommended)+#### SSL Configuration (Recommended)
  
 The appliance is configured, by default, with DHCP and a self-generated untrusted SSL certificate. ​ The appliance is configured, by default, with DHCP and a self-generated untrusted SSL certificate. ​
  
-In order to use the client tools (desktop and mobile ​applications) ​over SSL you will need a trusted SSL certificate and a fully qualified domain name (FQDN).+In order to use the web, desktop and mobile ​apps over SSL you will need a trusted SSL certificate and a fully qualified domain name (FQDN).
  
 #### Disabling SSL (Not Recommended) #### Disabling SSL (Not Recommended)
Line 74: Line 107:
 If you do NOT wish to use SSL for the trial you can disable it. If you do NOT wish to use SSL for the trial you can disable it.
  
- 1. Log in as the Appliance Administrator as per the the instructions below.+ 1. Log in as the Appliance Administrator as per the instructions below.
  2. Navigate to Settings > Site Functionality  2. Navigate to Settings > Site Functionality
  3. Set Always use HTTPS to No.  3. Set Always use HTTPS to No.
- 4. Set Generate secure server side links to No.+ 4. Set Generate secure server-side links to No.
  5. Select *Update options* at the bottom of the page.  5. Select *Update options* at the bottom of the page.
  
  
-### Create DNS entries+#### Create DNS entries
  
 Choose three fully qualified domain names (FQDNs). For example: Choose three fully qualified domain names (FQDNs). For example:
Line 91: Line 124:
  
 ^ Type ^ Name         ^ Value^ ^ Type ^ Name         ^ Value^
-| A    | files        | 35.188.82.62+| A    | files        | 54.194.216.200
-| A    | files-webdav | 35.188.82.62+| A    | files-webdav | 54.194.216.200
-| A    | files-s3 ​    ​| ​35.188.82.62|+| A    | files-s3 ​    ​| ​54.194.216.200|
  
 Verify that Public DNS records are setup correctly: Verify that Public DNS records are setup correctly:
  
-    curl -L -k http://​files.example.com | head +    curl -Lk http://​files.example.com | head 
-    curl -L -k http://​files-webdav.example.com | head +    curl -Lk http://​files-webdav.example.com | head 
-    curl -L -k http://​files-s3.example.com | head+    curl -Lk http://​files-s3.example.com | head
  
 These commands should resolve the domain name, connect to port 80, get redirected to port 443 and return (part of) the web login page: These commands should resolve the domain name, connect to port 80, get redirected to port 443 and return (part of) the web login page:
Line 114: Line 147:
  <meta name="​viewport"​ content="​width=device-width,​ initial-scale=1.0,​ maximum-scale=1.0,​ user-scalable=no"/>​  <meta name="​viewport"​ content="​width=device-width,​ initial-scale=1.0,​ maximum-scale=1.0,​ user-scalable=no"/>​
  
-### Change Hostname+#### Change Hostname
  
-To update the appliance with the FQDN change to the root user by issuing “sudo bash“ with SSH. As the root user, edit /​etc/​hostname ​with nano or vi.+To update the appliance with the FQDN change to the root user by issuing “sudo bash“ with SSH.  You can then edit /​etc/​hostname or use the command:
  
-Change the Azure instance name to your FQDN.+    hostname files.example.com
  
-    files.example.com 
  
 +#### Start SME Config Server
  
-### Start SME Config Server+If you are logged in as root leave root privilege: ​
  
-Leave root privilege:  +    ​[root@files smeconfiguser]#​ exit
- +
-    ​[root@ip-10-0-0-192 ​smeconfiguser]#​ exit+
  
 As the smeconfiguser start the configuration server by typing **smeconfigserver**. You should see a confirmation that the config server is running: As the smeconfiguser start the configuration server by typing **smeconfigserver**. You should see a confirmation that the config server is running:
  
-    [smeconfiguser@ip-10-0-0-192 ​~]$ smeconfigserver+    [smeconfiguser@files ~]$ smeconfigserver
     Please contact me with a browser on port 8080     Please contact me with a browser on port 8080
     Hit Ctrl+C when work is done     Hit Ctrl+C when work is done
Line 140: Line 171:
  
  
-### Configure Hostname Settings+#### Configure Hostname Settings
  
-Here you only need to configure the three domain names. Click "​Configuration"​ and then "SME Server Hostname Settings"​.+Here you only need to configure the three domain names. Click "**Configuration**" and then "**SME Server Hostname Settings**".
  
  
Line 148: Line 179:
  
 After Saving go to the "​Overview"​ page and scroll down to the bottom to "​Apply"​. No other changes are required for the appliance on Azure. After Saving go to the "​Overview"​ page and scroll down to the bottom to "​Apply"​. No other changes are required for the appliance on Azure.
 +
 +{{ :​azure-gettingstarted:​apply-changes.png?​500 |}}
  
 Follow the prompts on the page to reboot the appliance. If you are not doing this immediately stop the Config Server by typing Control-C in the terminal window. Follow the prompts on the page to reboot the appliance. If you are not doing this immediately stop the Config Server by typing Control-C in the terminal window.
  
-### Create SSL Certificates+{{ :​azure-gettingstarted:​reboot-server.png?​nolink&​400 |}} 
 + 
 +#### Create SSL Certificates
  
 This section creates and configures SSL certificates from Let's Encrypt. If you are using your own certificates (or a different service) you can use the smeconfigserver service above to add certificates. This section creates and configures SSL certificates from Let's Encrypt. If you are using your own certificates (or a different service) you can use the smeconfigserver service above to add certificates.
Line 196: Line 231:
     crontab -e     crontab -e
  
-In the example below the renewal attempt will process at 2:​30AM ​in the timezone of the Enterprise File Fabric.  The Enterprise File Fabric ships by default ​with the timezone set to UTC time.  ​Please adjust this timezone ​as necessary.+In the example below the renewal attempt will process at 2:​30AM. ​ The Enterprise File Fabric ships with the timezone set to UTC.  ​You can set the cron jobs to run at the time of your choosing, but do not change the File Fabric'​s ​timezone.
  
     30 2 * * * /​bin/​certbot renew >> /​var/​log/​letsencrypt/​le-renew.log     30 2 * * * /​bin/​certbot renew >> /​var/​log/​letsencrypt/​le-renew.log
Line 202: Line 237:
 This will create a crontab entry for a cron job that will handle the renewals and write its output to a log file. This will create a crontab entry for a cron job that will handle the renewals and write its output to a log file.
  
-Use https://​www.ssllabs.com/​ to test the installation.+Use https://​www.ssllabs.com/​ to test the installation ​after updating the certificate.
  
-## Appliance ​Administrator+## Configure ​Appliance
  
-Open a browser to the the domain name you assigned:+Open a browser to the domain name you assigned:
  
    ​https://​files.example.com ​      ​https://​files.example.com ​  
Line 216: Line 251:
 You'll see the following login page: You'll see the following login page:
  
-{{ ::appladmin-login.png?​nolink&​300 |}}+{{ :azure-gettingstarted:azure-fabric-login.png?​nolink&​300 |}}
  
 Log into the appliance as appladmin with a password from your trial license: Log into the appliance as appladmin with a password from your trial license:
Line 229: Line 264:
 A trial key can be requested from https://​www.storagemadeeasy.com/​appform/​. A trial key can be requested from https://​www.storagemadeeasy.com/​appform/​.
  
-### Change Admin Password (Optional)+### Change Admin Password (Recommended)
  
-Select "​Password/​Login"​ from the Main Menu to change the Appliance Administrator password. After you select "​Update password"​ you will be logged out and need to log back in.+Select "​Password/​Login"​ from the Main Menu to change the Appliance Administrator password. 
 + 
 +After you select "​Update password"​ you will be logged out and need to log back in.
  
 ### Outbound Email (Recommended) ### Outbound Email (Recommended)
Line 239: Line 276:
 If you do not configure an email server remember not to use email notification when adding users. If you do not configure an email server remember not to use email notification when adding users.
  
 +#### Using SendGrid for Email
 +
 +Microsoft has restrictions on sending email from the Azure platform. They recommend using an SMTP relay service such as SendGrid. See [[https://​docs.microsoft.com/​en-us/​azure/​sendgrid-dotnet-how-to-send-email|Sending Email from Azure with SendGrid.]]
 +
 +The File Fabric SMTP configuration would be:
 +
 +{{ :​azure-gettingstarted:​smtp-sendgrid.png?​nolink&​600 |}}
 +
 +Use **Test SMTP options** to test the settings and also check that the test email was received since Azure silently discards emails sent to unsupported servers.
  
 ### Change Appliance Admin Email ### Change Appliance Admin Email
  
-With an SMTP server configured you can change the email of the Appliance Admin. Go to the main menu (Hamburger icon) to Password/​Login.+With an SMTP server configured you can change the email of the Appliance Admin which will require a confirmation email. 
 + 
 +Go to the main menu (Hamburger icon) to Password/​Login ​to change the Account Email.
  
 You can also set up Two Factor Authentication (2FA) for the Appliance Admin from this screen. You can also set up Two Factor Authentication (2FA) for the Appliance Admin from this screen.
Line 254: Line 302:
 ## Create an Organization ## Create an Organization
  
-An //organization// is a tenant within the appliance and is created by the Appliance Administrator. +An organization is an administrative unit for set of usersIt includes policiesstorage resources, and permissions for those usersOrganizations, also called tenants, are self-managed by their users and not accessible or even visible ​from other organizations ​on the same appliance.
- +
-### Review User Package (Optional) +
- +
-The File Fabric platform uses templates for organizationsin order for us to create our organizationwe need to pick a template, before we do, let’s review. +
- +
-Login as the Appliance Administrator. +
- +
-Click “User Packages” ​and then click the pencil to modify “Organisation Cloud 20 Users” This is a good template to start fromScroll down to the “Extra options” section and add “Content Search Enabled” and Dropfolders. Use “Crtl-Click"​ to add to the selection. +
- +
-### Create Organization +
- +
-Login as the Appliance Administrator. +
- +
-In the hamburger menuselect “Users” and then "Add a User"​. +
- +
-On the Add a User screen create your Organization admin user. (This will also be your organization.)  +
- +
- 1. User Login: The Organization short name and superuser'​s username. We recommend the domain name of your company such as "​smestorage.com"​. +
- 1. E-mail: Email address of organizational admin, must be unique to the system, do not use your own. +
- 1. Password:  +
- 1. Name (Company Name): Full organization name. +
- 1. Package: The user package template ​from earlier. +
- 1. We do not need to split the license between ​organizations, leave the last field empty. +
- +
-Click Save.+
  
-{{ :​cloudappliance:​applinstallv1901:​image014.png?​nolink&​400 |}}+The appliance administrator creates organizations and provides credentials for the first “Organization Administrator” who will log in to complete the setup of organization policies and users.
  
-## Setting Up an Organization+To create ​an organization see [[cloudappliance/​organization]].
  
-Log out from the Appliance Admin, appladmin user, and log back in as the user you just created.+## Add Storage
  
-You will first see the “Add Storage Provider” screen. You have to add storage before you can continue. ​+Log out as the appladmin user, and log back in as the user you just created. ​You will first see the “Add Storage Provider” screen. You have to add storage before you can continue ​setup. ​ The first storage added is the "​default storage"​ used for internal files such as generated image thumbnails. The default storage can be changed in the future.
  
-Select your provider and follow the instructions on the next couple of screens. See the next section for information on setting up Amazon S3 storage.+Select your provider and follow the instructions on the next couple of screens. ​
  
-## Cloud Storage Provider+See [[cloudproviders:​azure]] for more information.
  
-After logging into the organization you will be prompted to register your cloud storage provider. Choose the provider (for example, [[cloudproviders:​azure]]) and click Continue to proceed. 
  
  
-### Azure Storage Provider 
  
-Enter your Azure Blog Storage account name and key to continue:+## Single Sign-On (Optional)
  
 +An authentication provider can be added to allow users to log in using their corporate credentials. For Azure, we recommend Azure Active Directory. There are two ways to connect.
  
-The credentials are validated and a list of buckets in the account are returnedSelect the buckets ​you wish to be indexed. We recommend not using buckets with existing production data for the initial trial.+ 1Use [[ldap]] with Azure AD Domain Services if you will be using a [[:​cloudappliance/​cifs|Multi-user SMB connector]] such as for Azure Files, Nasuni, or Azure NetApp Files.
  
-Select and create a new bucket for default data (at the bottom) before selecting ContinueYou are then ready to add users!+ 2. Otherwise use [[:​organisationcloud/​saml#​configuring_with_adfs_-_azure_ad|SAML Integration]].
  
-## Use Cases+## Next Steps
  
 Once this is complete you can: Once this is complete you can: