Installing and Configuring Microsoft Azure Service Broker
This topic describes how to install and configure Microsoft Azure Service Broker.
In this step, you configure your Azure account to allow the Microsoft Azure Service Broker to create and manage Azure resources.
Create an Azure account by following these steps.
Create a service principal by following these steps.
Contributor role needs to be assigned to the service principal.
Microsoft Azure Service Broker stores information, for example the provisioning information of a service instance, in the database. Follow these steps to create a SQL database on Azure.
Download the product file from Pivotal Network.
Navigate to the Ops Manager Installation Dashboard and click Import a Product to upload the product file.
Click Add next to the uploaded Microsoft Azure Service Broker tile in the Ops Manager Available Products view to add it to your staging area.
Click the newly added Microsoft Azure Service Broker tile to configure the sections as described below. After the configuration, return to the Ops Manager Installation Dashboard and click Apply Changes to install Microsoft Azure Service Broker tile.
The setup in Step 1 must be successfully completed before beginning this configuration. You will need the Azure and database parameters from that step to successfully configure the broker.
Click Azure Config.
For Azure Environment, if you want to create Azure resource in mainland China, select
Azure China Cloud. Otherwise, select
Enter the Subscription Id from Step 1.
Enter the Tenant Id, Client Id and Client Secret from Step 1.
Click Broker Config.
For Database Provider, select the database type. At the current time, only
SQL Databaseis supported.
For Database Server, enter the endpoint, for example
SQL-SERVER-NAME.database.windows.net, or the IP address of the SQL database.
For Database Username and Database Password, enter your database credentials.
For Database Name, enter the name of the database where the Microsoft Azure Service Broker can store information.
For Database Encryption Key, enter the key to encrypt the sensitive information which are stored in the database. It should be a 32-character fixed-length string. If the key is forgotten, all sensitive information in the database will never be decrypted.
Click SQL Database Config.
For Allow to Create Sql Server, select the checkbox if you want to allow the developers to create the SQL server through the service broker.
If you did not select Allow to Create Sql Server, you must create a SQL server on Azure for developers to create databases:
- Click Add.
- Enter values for the following fields: SQL Server Name, SQL Server Administrator Login, and SQL Server Administrator Login Password.
Note: The Microsoft Azure Service Broker installs an app named
azure-services-broker in the
azure-service-broker-space space of the
After Ops Manager finishes the installation, the Microsoft Azure Service Broker appears as a green tile in the Installation Dashboard.
In Apps Manager, the new services are listed in the Marketplace, and are exposed to all orgs and spaces. Users can create instances of these services only by using the Cloud Foundry Command Line Interface (cf CLI) because Apps Manager does not support asynchronous services. See the Using Microsoft Azure Service Broker topic for more information.
The Microsoft Azure Service Broker is installed with all services enabled by default. All services can be listed in the Marketplace.
You can disable or enable any services through the cf CLI using the
cf disable-service-access or
cf enable-service-access commands.