如何将Azure资源注册为Azure Active Directory中的应用程序? [英] How to register your Azure resource as an Application in Azure Active Directory?
问题描述
我有一个Azure CDN.它具有一个自定义域,我尝试注册自己的证书以获取HTTPS支持.
I have an Azure CDN. It has a custom domain, and I attempting to register my own certificate for HTTPS support.
I am attempting to follow the instructions here: https://docs.microsoft.com/en-us/azure/cdn/cdn-custom-ssl?tabs=option-2-enable-https-with-your-own-certificate
我已将我的证书上传到密钥保险库.那应该很好.我现在正尝试向我的密钥保管库授予我的Azure CDN配置文件访问权限,以使其获得证书.这就是教程中的这一步骤(注册Azure CDN,步骤2)
I have uploaded my Certificate to a Key Vault. That should be good. I am now trying grant my Azure CDN Profile access to my Key Vault in order for it to get the certificate. That is this step in the tutorial (Register Azure CDN, step #2)
该步骤显示了GUID(205478c0-bd83-4e1b-a9d6-db63a3e1e1c8).那是哪里来的?那是我的Azure CDN配置文件的标识符吗?如果是这样,我在哪里可以得到?
That step shows a GUID (205478c0-bd83-4e1b-a9d6-db63a3e1e1c8). Where is that coming from? Is that the identifier for my Azure CDN Profile? If so, where would I get that?
我还刚刚注意到那里有两个命令:文本显示New-AzADServicePrincipal,但是屏幕快照显示New-AzureRmADServicePrincipal.大概后者是基于资源管理器的(较旧的?)命令.但是,我应该使用哪一个?
I also just noticed there are two commands there: The text shows New-AzADServicePrincipal, but the screenshot shows New-AzureRmADServicePrincipal. Presumably, the latter is the (older?) command based on Resource Manager. But, which one should I be using?
此外,我认为我没有安装Azure Powershell.我可以通过Azure门户使用Cloud Shell做到这一点吗?
Also, I don't think I have Azure Powershell installed. Can I do this using Cloud Shell via the Azure Portal?
当我尝试从Cloud Shell运行命令时看到的内容
What I see when I attempt to run the command from Cloud Shell
推荐答案
该步骤显示了GUID(205478c0-bd83-4e1b-a9d6-db63a3e1e1c8).那是哪里来的?那是我的Azure CDN配置文件的标识符吗?如果是这样,我在哪里可以得到?
That step shows a GUID (205478c0-bd83-4e1b-a9d6-db63a3e1e1c8). Where is that coming from? Is that the identifier for my Azure CDN Profile? If so, where would I get that?
GUID是Microsoft租户(microsoft.onmicrosoft.com)中多租户AD App的Application ID,当您将New-AzADServicePrincipal与GUID一起使用时,它将在以下位置创建与此AD App相关的服务主体您的AAD租户,代表您的CDN.
The GUID is the Application ID of the multi-tenant AD App in the Microsoft tenant(microsoft.onmicrosoft.com), when you use the New-AzADServicePrincipal with the GUID, it will create a service principal related to this AD App in your AAD tenant, which represents your CDN.
成功运行New-AzADServicePrincipal时,可以在租户的门户-> Azure Active Directory-> Enterprise applications中找到它.
When you run the New-AzADServicePrincipal successfully, you could find it in the portal -> Azure Active Directory -> Enterprise applications in your tenant.
我还刚刚注意到那里有两个命令:文本显示New-AzADServicePrincipal,但是屏幕快照显示New-AzureRmADServicePrincipal.大概后者是基于资源管理器的(较旧的?)命令.但是,我应该使用哪一个?
I also just noticed there are two commands there: The text shows New-AzADServicePrincipal, but the screenshot shows New-AzureRmADServicePrincipal. Presumably, the latter is the (older?) command based on Resource Manager. But, which one should I be using?
New-AzureRmADServicePrincipal属于旧的 Az 模块.您可以同时使用它们,但我建议您使用New-AzADServicePrincipal,因为AzureRM模块已被弃用,并且将不再进行更新.
The New-AzureRmADServicePrincipal belongs to the old AzureRM module, New-AzADServicePrincipal belongs to the new Az module. You could use both of them, but I recommend you to use New-AzADServicePrincipal, because the AzureRM module was deprecated and will not be updated any more.
此外,我认为我没有安装Azure Powershell.我可以通过Azure门户使用Cloud Shell做到这一点吗?
Also, I don't think I have Azure Powershell installed. Can I do this using Cloud Shell via the Azure Portal?
当然可以.只需在云外壳中运行它,无需手动安装任何模块.
Of course, you can. Just run that in the cloud shell, no need to install any module manually.
这篇关于如何将Azure资源注册为Azure Active Directory中的应用程序?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
