Installing a Local Scanning Server (LSS) Image in Microsoft Azure

• Before You Begin

• Create an Empty Managed Disk

• Generate a Writable SAS URL

• Upload the LSS Image to the Empty Managed Disk

• Create a Virtual Machine in Azure

• Configure the Network

• Test Access to the LSS

• Troubleshooting

Before You Begin

To provision a Log Streaming Service (LSS) on Microsoft Azure, you will need the following:

• A Microsoft Azure subscription

• A computer running Windows 10 or later with the following installed:

  • Azure CLIhttps://docs.microsoft.com/en-us/cli/azure/install-azure-cli-windows?view=azure-cli-latest

  • AzCopyhttps://docs.microsoft.com/en-us/azure/storage/common/storage-use-azcopy-v10#download-and-install-azcopy

• An LSS image with the following specifications:

  • Virtual Hard Disk (VHD) format (.vhd) with a fixed-size disk

  • The size of the VHD must be in multiples of 512 bytes

Create an Empty Managed Disk

You will need to create an empty managed disk to upload the LSS image. Do the following:

1. Open a PowerShell prompt.

2. Enter the following command to connect to Azure:

   az login

3. Enter your Azure credentials to sign in.

4. In the PowerShell prompt, enter the following command:

   az disk create -n DiskName -g ResourceGroup -l Region--for-upload --upload-size-bytes VHDSizeInBytes --sku standard_lrs

   1. Edit the parameters in the command line with the following:

      1. DiskName - The name for the image.

      2. RessourceGroup - The resource group to attach to the disk.

      3. Region - The region where the image and virtual machine is hosted.

      4. VHDSizeInBytes - The size of the LSS VHD in Bytes without commas. To view the size of your VHD, right-click on the file, and then select Properties.

      5. sku - You can change this value, if necessary.

5. Press Enter to display the creation details.

Generate a Writable SAS URL

Before you can upload the LSS image to the empty managed disk, you will need to create a writable SAS URL:

1. Enter the following command:

   az disk grant-access -n DiskName -g ResourceGroup--access-level Write --duration-in-seconds 86400

   1. Edit the parameters in the command line with the following:

      1. DiskName - The name used to create the empty managed disk.

      2. ResourceGroup - The name of the resource group used to create the empty managed disk.

2. Press Enter to get the AccessSas URL. Make note of the URL for the following step.

Upload the LSS Image to the Empty Managed Disk

To upload the LSS image to the empty managed disk, do the following:

1. Copy the azcopy.exe file and your LSS image (.vhd file) into a new folder.

2. Open the folder, right-click within it, and then select Open PowerShell window here.

   

3. In the new PowerShell prompt, enter the following command to upload the LSS image onto the empty management disk:

   AzCopy.execopy.\LLSImageName.vhd Sas-URI--blob-typePageBlob

   1. Edit the parameters in the command line with the following:

      1. LSSImageName.vhd - The name of your LSS image (.vhd file).

      2. Sas-URI - The AcessSas URL previously generated.

4. Press Enter. The upload will begin.

5. Once the upload is complete, you will need to revoke the SAS URL you created before continuing using the following command:

   az disk revoke-access -n DiskName -g ResourceGroup

   1. Edit the parameters in the command line with the following:

   1. DiskName - The name used to create the empty managed disk.

   2. ResourceGroup - The name of the resource group used to create the empty managed disk.

6. Press Enter to revoke the SAS URL.

Create a Virtual Machine in Azure

To continue, do the following to create a virtual machine in Azure:

1. In the PowerShell prompt, enter the following command to create the virtual machine:

   az vm create --resource-group ResourceGroup --location LocationName --name VMName --os-type linux --attach-os-disk ManagedDisk –-size NameoftheSize

   1. Edit the parameters in the command line with the following:

      1. ResourceGroup - The name of the resource group.

      2. LocationName - The name of the location.

      3. VMName - The name of the virtual machine.

      4. ManagedDisk - The name of the managed disk you previously created.

      5. NameoftheSize - The name of the size of the virtual machine (recommended: Standard_A8_v2).

         NOTE: The recommended size for the virtual machine is 8vCPU and 16GB of RAM. To see the list of available size of your region, enter the following command:
         
         

         az vm list-sizes --location <LocationName>

2. Once the VM is created, the shell will return the VM details. Save the “publicIpAddres”.

Configure the Network

To access the LSS image, you will need to configure the network and temporarily allow inbound communication on port 443 of the virtual machine. The LSS image is preconfigured with DHCP enabled.

1. To open port 443, use the following command:

   az vm open-port -g ResourceGroup -n VMName --port 443 --priority 100

   1. Edit the parameters in the command line with the following:

      1. ResourceGroup - The name of the resource group.

      2. VMName - The name of the virtual machine.

2. Once the configuration of the LSS image is complete, close port 443.

Test Access to the LSS

In a web browser, go to the admin page of the LSS image using the following public IP Address:

A security warning will appear due to an invalid certificate. Choose to continue and then it will prompt you for credentials Enter the following:

• Username - admin

• Password - demo

Troubleshooting

If you cannot access the LSS web-GUI, do the following:

• Check if the port 443 is open.

• Reboot the LSS image directly from Azure and try again.