Azure DevOps Pipline:使用服务原理登录RDS帐户

Question

是否有人试图使用Azure DevOps管道和服务主体将用户添加到主机池中的VM中？

我不需要构建一个可以添加用户名并分配给主机池的管道。

$aadContext = Connect-AzureAD
$svcPrincipal = New-AzureADApplication -AvailableToOtherTenants $true -DisplayName $SPDEV
$svcPrincipalCreds = New-AzureADApplicationPasswordCredential -ObjectId $svcPrincipal.ObjectId
$creds = New-Object System.Management.Automation.PSCredential($svcPrincipal.AppId, (ConvertTo-SecureString $svcPrincipalCreds.Value -AsPlainText -Force))

Add-RdsAccount -DeploymentUrl "https://rdbroker.wvd.microsoft.com" -Credential $creds -ServicePrincipal -AadTenantId $aadContext.TenantId.Guid 

#Add User to AVD Host Pool


if (Get-RdsAppGroupUser -TenantName Test -HostPoolName $hostpool -AppGroupName $HostPoolAppGroup -UserPrincipalName $user) -eq

Add-RdsAppGroupUser -TenantName $tenant -HostPoolName $hostpool -AppGroupName $HostPoolAppGroup -UserPrincipalName $user

# Assign the user to the app role
New-AzureADUserAppRoleAssignment -ObjectId $user.ObjectId -PrincipalId $user.ObjectId -ResourceId $sp.ObjectId -Id $appRole.Id


Update-AzWvdHostPool -ResourceGroupName $RG -Name $HostPool -PersonalDesktopAssignmentType Direct

#Add User to AVD Host Pool VM

New-AzRoleAssignment -SignInName $User -RoleDefinitionName "Desktop Virtualization User" -ResourceName $HostPool -ResourceGroupName $RG -ResourceType 'Microsoft.DesktopVirtualization/applicationGroups'

我有这个，但不知道如何在它周围建一条管道。

Answer 1

使用管道中的蔚蓝powershell任务。此外，您还需要通过服务连接->Azure资源管理器实现连接您的服务原则。

​

​