![]() In the pod's subscription, the following resource providers must all have Registered status. For more information, see the Custom Roles section near the bottom of this page. If used, the custom role needs to provide for the specific API calls that Horizon Cloud needs to use. If your organization prefers to avoid use of the Contributor role in the pod's subscription, Horizon Cloud also supports use of a custom role instead. #Cloudapp status registrationThe use of a group-based assignment of a role - in which the role is assigned to a group and the app registration is a member in that group - is currently unsupported. The role assignment must be a direct assignment. The reason why the Contributor role is used is because this role covers all of the API calls that Horizon Cloud would need to perform within the pod's subscription. Typically the built-in Contributor role is the role used by Horizon Cloud with the pod's subscription. The Horizon Cloud app registration must have an assigned role in the pod's subscription. About Assigning a Role to the App Registration In this case, an app registration and client secret key are needed in that subscription in addition to the ones for the pod's subscription. ![]() If you want to use the feature where the external Unified Access Gateway configuration is deployed in its own subscription, separate from the pod's subscription, Horizon Cloud must also have the ability to call APIs in that subscription at the time you run the wizard to deploy that external gateway. The client secret key must be generated in the Azure Portal and a role assigned to the Horizon Cloud app registration to operate at the level of the pod's subscription. Creation of the app registration automatically creates a service principal object in the pod subscription. Create the App Registration Before Running the Pod Deployerīecause the pod deployer needs to call the APIs during the pod deployment process for programmatically creating the pod's resources within the pod's subscription, the app registration and client secret key must exist before you start the deployment wizard. #Cloudapp status upgradePost-pod-deployment, the service uses API calls to create the base image VMs for the golden images, run sysprep on the golden images, create farm hosts and VDI desktop VMs, add and edit the pod's gateway configurations, and to maintain and upgrade the pod. Then, after pod deployment, Horizon Cloud must continue to have the ability call APIs in the pod's subscription. ![]() These API calls perform actions in the pod's subscription to create items such as the pod manager VM, the VM's NICs, the network security groups (NSGs) on those NICS - all of the resources that a Horizon Cloud pod requires. Brief Introductionįor the initial deployment of the pod, the pod deployer calls the APIs in the Microsoft Azure subscription that you have chosen to use for the pod. To provide the ability for Horizon Cloud to use its API calls in the pod's subscription, you create an app registration. Another one is captured in Continuous integration/deployment/delivery on Google App Engine, too risky?.For Horizon Cloud Service on Microsoft Azure deployments, the service uses API calls to deploy the pod into a Microsoft Azure subscription and manage that pod and the pod-provisioned VDI desktops and farms. Over-writing a certain version of an app/service (which I didn't think about before, BTW, thank you for that!). What you described is not the only issue with GAE deployments But in some cases - for example when the version is actually used to implement a certain execution environment - that's intentional. I suspect that the need for emptying the task queues when tasks destined for the version being deleted could be driven by the virtual "head-of-the-line blocking" that would occur in this case, affecting other services/versions in the project (task queues are shared across a project) and maybe even the related GAE infra functionality.įundamentally re-writing a certain app/service version kinda defeats the whole purpose of versioning (imagine git allowing you to change the content of the commit/refpoint associated with a certain SHA signature!). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |