Can't create virtual machine #4328
-
|
When deploying the following, I'm receiving this error FILE:Bastion.bicep param natGatewayName string = 'NATGateway'
param bastion_name string = 'MIMBastion'
param vnet_name string = 'mim-vnet'
param public_IPAddress_name string = 'mim-vnet-ip'
//param location string = 'eastus'
param location string = resourceGroup().location
param webSubnet_name string = 'WebSubnet'
param SQLSubnet_name string = 'SQLSubnet'
param appSubnet_name string = 'AppSubnet'
param dcSubnet_name string = 'DCSubnet'
resource bastionHostIP 'Microsoft.Network/publicIPAddresses@2020-11-01' = {
name: 'bastionIPName'
location: 'eastus'
sku: {
name: 'Standard'
tier: 'Regional'
}
properties: {
ipAddress: '52.149.209.76'
publicIPAddressVersion: 'IPv4'
publicIPAllocationMethod: 'Static'
idleTimeoutInMinutes: 4
ipTags: []
}
}
resource natGatewayIPname 'Microsoft.Network/publicIPAddresses@2020-11-01' = {
name: 'natGatewayPublicIPName'
location: 'eastus'
sku: {
name: 'Standard'
tier: 'Regional'
}
properties: {
ipAddress: '20.106.167.52'
publicIPAddressVersion: 'IPv4'
publicIPAllocationMethod: 'Static'
idleTimeoutInMinutes: 4
ipTags: []
}
}
resource natGatewayName_resource 'Microsoft.Network/natGateways@2020-11-01' = {
name: natGatewayName
location: 'eastus'
sku: {
name: 'Standard'
}
properties: {
idleTimeoutInMinutes: 10
publicIpAddresses: [
{
id: natGatewayIPname.id
}
]
}
}
resource public_IPAddress_name_resource 'Microsoft.Network/publicIPAddresses@2020-11-01' = {
name: public_IPAddress_name
location: location
sku: {
name: 'Standard'
tier: 'Regional'
}
properties: {
ipAddress: '52.181.127.197'
publicIPAddressVersion: 'IPv4'
publicIPAllocationMethod: 'Static'
idleTimeoutInMinutes: 4
ipTags: []
}
}
resource vnet_name_resource 'Microsoft.Network/virtualNetworks@2020-11-01' = {
name: vnet_name
location: location
properties: {
addressSpace: {
addressPrefixes: [
'10.0.0.0/16'
]
}
subnets: [
{
name: 'AzureBastionSubnet'
properties: {
addressPrefix: '10.0.0.0/27'
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
{
name: webSubnet_name
properties: {
addressPrefix: '10.0.1.0/27'
natGateway: {
id: natGatewayName_resource.id
}
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
{
name: SQLSubnet_name
properties: {
addressPrefix: '10.0.2.0/27'
natGateway: {
id: natGatewayName_resource.id
}
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
{
name: appSubnet_name
properties: {
addressPrefix: '10.0.3.0/27'
natGateway: {
id: natGatewayName_resource.id
}
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
{
name: dcSubnet_name
properties: {
addressPrefix: '10.0.4.0/27'
natGateway: {
id: natGatewayName_resource.id
}
serviceEndpoints: []
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
]
virtualNetworkPeerings: []
enableDdosProtection: false
}
}
resource vnet_name_dcSubnet 'Microsoft.Network/VirtualNetworks/subnets@2019-11-01' = {
parent: vnet_name_resource
name: 'dcSubnet'
properties: {
addressPrefix: '10.0.4.0/27'
natGateway: {
id: natGatewayName_resource.id
}
serviceEndpoints: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
resource vnet_name_AzureBastionSubnet 'Microsoft.Network/virtualNetworks/subnets@2020-11-01' = {
parent: vnet_name_resource
name: 'AzureBastionSubnet'
properties: {
addressPrefix: '10.0.0.0/27'
delegations: []
privateEndpointNetworkPolicies: 'Enabled'
privateLinkServiceNetworkPolicies: 'Enabled'
}
}
resource bastion_name_resource 'Microsoft.Network/bastionHosts@2020-11-01' = {
name: bastion_name
location: location
properties: {
dnsName: 'bst-f1e99eeb-bd3a-452e-95f2-c4b329153292.bastion.azure.com'
ipConfigurations: [
{
name: 'IpConf'
properties: {
privateIPAllocationMethod: 'Dynamic'
publicIPAddress: {
id: public_IPAddress_name_resource.id
}
subnet: {
id: vnet_name_AzureBastionSubnet.id
}
}
}
]
}
}
module dcModule 'Modules/Domain-Controller.bicep' = {
name: 'dcDeploy'
params:{
location: location
subNetID: vnet_name_dcSubnet.id
}
dependsOn: [
vnet_name_dcSubnet
]
}FILE: Modules/Domain-Controller.bicep param location string
param subNetID string
resource virtualMachines_MIM_DC_01_name_resource 'Microsoft.Compute/virtualMachines@2021-03-01' = {
name: 'MIM-DC01'
location: location
properties: {
hardwareProfile: {
vmSize: 'Standard_B2ms'
}
storageProfile: {
imageReference: {
publisher: 'MicrosoftWindowsServer'
offer: 'WindowsServer'
sku: '2019-datacenter-gensecond'
version: 'latest'
}
osDisk: {
osType: 'Windows'
name: 'OsDisk'
createOption: 'FromImage'
caching: 'ReadWrite'
managedDisk: {
storageAccountType: 'Premium_LRS'
}
diskSizeGB: 127
}
dataDisks: []
}
osProfile: {
computerName: 'MIM-DC01'
adminUsername: 'xAdministrator'
adminPassword: '1qazXSW@3edcVFR$'
windowsConfiguration: {
provisionVMAgent: true
enableAutomaticUpdates: true
patchSettings: {
patchMode: 'AutomaticByOS'
assessmentMode: 'ImageDefault'
enableHotpatching: false
}
}
secrets: []
allowExtensionOperations: true
requireGuestProvisionSignal: true
}
networkProfile: {
networkApiVersion: '2020-11-01'
networkInterfaceConfigurations: [
{
name: 'MIM-DC-01592'
properties: {
deleteOption: 'Delete'
ipConfigurations: [
{
name: 'MIM-DC01-pi'
properties: {
primary: true
privateIPAddressVersion: 'IPv4'
subnet: {
id: subNetID
}
}
}
]
}
}
]
}
diagnosticsProfile: {
bootDiagnostics: {
enabled: true
}
}
}
} |
Beta Was this translation helpful? Give feedback.
Replies: 5 comments 8 replies
-
|
Where did you derive those Public IP Address values that you are using on the Public IP resources ? The public IP addresses are owned by Azure. So generally they are a read only property. You can request a range of them via a 'public ip address prefix' resource, however other than that you will leave the value empty and an available public IP will be assigned to you. You can select it to be static/dynamic. Example template: https://github.com/brwilkinson/AzureDeploymentFramework/blob/main/ADF/bicep/x.publicIP.bicep |
Beta Was this translation helpful? Give feedback.
-
|
I'm not having issues with the public ip. The issue is with networkProfile.networkInterface in the domainController.bicep module. networkProfile: { |
Beta Was this translation helpful? Give feedback.
-
|
The public ip was derived from Azure, and I can remove the ip address and let Azure assign it again. |
Beta Was this translation helpful? Give feedback.
-
|
I would recommend to use the location param/property on all resources, since they are network related they will need to be in the same region. That way if the deployment is in an resource group that is different to the region you specified with the currently hard coded values, then it will still work. (well basically try not to mix and match). I assume based on the resource names this was decompiled? e.g. public_IPAddress_name_resource ... I changed my names below to short names :) I don't know that much about the 'networkInterfaceConfigurations' except for VM ScaleSets (that scale out and back), I always just use as below, creating the NIC resource first, then assigning it. You may be able to figure the above out, or else opt for the common method as below. param location string
param subNetID string
resource DC1NIC 'Microsoft.Network/networkInterfaces@2021-02-01' = {
name: 'MIM-DC-01592'
location: resourceGroup().location
properties: {
ipConfigurations: [
{
name: 'ipconfig1'
properties: {
subnet: {
id: subNetID
}
}
}
]
}
}
resource DC1 'Microsoft.Compute/virtualMachines@2021-03-01' = {
name: 'MIM-DC01'
location: location
properties: {
hardwareProfile: {
vmSize: 'Standard_B2ms'
}
storageProfile: {
imageReference: {
publisher: 'MicrosoftWindowsServer'
offer: 'WindowsServer'
sku: '2019-datacenter-gensecond'
version: 'latest'
}
osDisk: {
osType: 'Windows'
name: 'OsDisk'
createOption: 'FromImage'
caching: 'ReadWrite'
managedDisk: {
storageAccountType: 'Premium_LRS'
}
diskSizeGB: 127
}
dataDisks: []
}
osProfile: {
computerName: 'MIM-DC01'
adminUsername: 'xAdministrator'
adminPassword: '1qazXSW@3edcVFR$'
windowsConfiguration: {
provisionVMAgent: true
enableAutomaticUpdates: true
patchSettings: {
patchMode: 'AutomaticByOS'
assessmentMode: 'ImageDefault'
enableHotpatching: false
}
}
secrets: []
allowExtensionOperations: true
// requireGuestProvisionSignal: true
}
networkProfile: {
networkInterfaces: [
{
id: DC1NIC.id
properties: {
primary: true
deleteOption: 'Delete'
}
}
]
}
diagnosticsProfile: {
bootDiagnostics: {
enabled: true
}
}
}
} |
Beta Was this translation helpful? Give feedback.
-
|
in case you are interested in comparing the Virtual Machine ScaleSet settings, here is the reference. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you @brwilkinson, this answer allowed me to resolve the issue. Now if I can only correct to me CD VM via Bastiom... |
Beta Was this translation helpful? Give feedback.
-
|
okay great. Can you elaborate on the Bastion scenario some more? |
Beta Was this translation helpful? Give feedback.
-
|
here is a Bastion sample if that is helpful https://github.com/brwilkinson/AzureDeploymentFramework/blob/main/ADF/bicep/Bastion.bicep |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
-
|
sorry i cannot figure out what that is ... perhaps once you are back in front of the keyboard you can just grab a screen shot. |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
-
|
I will mark this issue as answered for now and just open a new one, if you cannot figure it out. |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
Where did you derive those Public IP Address values that you are using on the Public IP resources ?
The public IP addresses are owned by Azure. So generally they are a read only property.
You can request a range of them via a 'public ip address prefix' resource, however other than that you will leave the value empty and an available public IP will be assigned to you. You can select it to be static/dynamic.
Example template: https://github.com/brwilkinson/AzureDeploymentFramework/blob/main/ADF/bicep/x.publicIP.bicep