This
NOTE: If you are looking for resources and support for Azure, see the Microsoft Azure Marketplace: https://azuremarketplace.microsoft.com/.
NOTE: If you are configuring a Database, ScienceLogic recommends allocating four times the memory for the Database as compared to the memory for the Data Collectors.
TIP: A single Azure image file can be used to create multiple virtual machines. For example, you can use the same Azure VHD file for the Database Server to create multiple Database Servers.
High Availability for Azure deployments is supported for installations of 12.1.x
Use the following menu options to navigate the SL1 user interface:
- To view a pop-out list of menu options, click the menu icon ().
- To view a page containing all of the menu options, click the Advanced menu icon ().
Prerequisites for Installing SL1 in Azure
To deploy an SL1 appliance in Azure, you need the following components:
-
Windows PowerShell version 5 or later. (See Microsoft's documentation for instructions on installing PowerShell on Windows.)
-
PowerShellGet. (See Microsoft's documentation on PowerShellGet for more information.)
-
Azure PowerShell module. (See Microsoft's documentation for instructions on installing the Azure PowerShell module.)
- Azure CLI tool
- An Azure Resource group
- An Azure storage account that includes at least one blob container
- An Azure Network Security Group (NSG). (See Microsoft's documentation on Network Security Groups for more information.)
In addition, before attempting to deploy SL1 in Azure, you should confirm that the following prerequisites are all true:
-
Your Azure policies allow you to create a new virtual machine from the ScienceLogic VHD.
-
Your virtual machine naming convention does not conflict with any existing policies in Azure.
-
You are using virtual networks and subnets that allow access and the creation of new virtual machines.
-
Your resource group allows you to create new virtual networks.
System Requirements
For details about supported hypervisors and the requirements and specifications for each SL1 appliance, see the System Requirements page on the ScienceLogic Support Site.
Deploying an SL1 System in Azure
This section provides the information you need to deploy SL1 in Azure and includes procedures for each step.
SL1 Appliance Deployment Order for Distributed Systems
To deploy a distributed SL1 system on Azure instances, create appliances in this order:
- Database Server
- Administration Portal (if applicable)
- Data Collectors
- Message Collectors (if applicable)
Installing and Configuring the Azure CLI
Azure CLI is a tool that lets you manage resources in Azure. To complete the SL1 installation on Azure using the procedures in this section, you must have the Azure CLI tool installed.
To install and configure the Azure CLI tool:
- Download and install the Azure CLI tool from the Microsoft website:
https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-windows?view=azure-cli-latest
- After installation completes, search for and click on "PowerShell" in Windows to start the program.
- In PowerShell, type "az login". You will be prompted to sign into your Microsoft Azure account. After you log in, you will see information about your Azure subscription within the PowerShell window.
Configuring an Azure Resource Group and Storage Account
To create and configure an Azure storage account:
- Log in to the Azure Portal, and then click Resource groups on the left menu.
- Click the button and add information for a new Resource group. Click the button to create the Resource group.
- After creating the Resource group, click Storage accounts on the left menu.
- Click the button, and then click the button to create a new Storage account. When creating the Storage account, complete the following fields:
- Deployment model. Select Resource manager.
- Account kind. Select General purpose.
- Resource group. Select Use existing, and then select the Resource group you created in step 2.
- After creating the Storage account, click Storage accounts on the left menu, and then select the newly created Storage account.
- Under the Services section of the Storage account pane, click Blobs. The Blob service blade information appears.
- In the Blob service pane, click the Plus icon to add a new container. Type a name for the container and select Blob as the Access Type. When you are finished, click the button to create the Blob container.
Creating the BLOB_URI
Before you can upload the VHD image file, you must:
- Determine the URL value of the Azure storage account
- Define the BLOB_URI
To create the BLOB_URI, you must determine the container URL and then append the name of the VHD file. You will use the BLOB_URI value when you upload the VHD file. This BLOB_URI tells Azure where to put the VHD file and what to call it.
To determine the container URL:
- Log in to the Azure portal.
- Select Storage Accounts.
- Select the Containers section.
- Click the ellipsis (...) button to the right of the container name to open the pop-up menu.
- Click Container Properties in the pop-up menu. You will see a URL displayed in the Properties.
- Click the blue Copy icon on the Properties page to copy the URL for the container.
To create the BLOB_URI value, append the destination to the container URL. For example, if the container URL is:
https://azuretest.blob.core.windows.net
Your BLOB_URI value might be:
https://azuretest.blob.core.windows.net/vhds/em7inazure.vhd
Where "/vhds" is the directory on the container, and "em7inazure.vhd" is the name of the VHD image file you will be uploading.
Uploading a VHD Image File to an Azure Storage Account
After creating the Resource group, Storage account, and Blob container, you must upload the ScienceLogic VHD image file to the Blob container. To do so, you will need the following information:
- The ScienceLogic VHD file
- Resource Group name
- Blob container URI
- Local file path to the VHD file
Downloading the ScienceLogic VHD File
To download the ScienceLogic VHD file:
- Open a browser session and go to support.sciencelogic.com.
- Go to the Product Downloads menu and choose Platform.
- Find the platform version that you want to download. Click on its name.
- Expand the Release Files list and find an entry of Record Type Product Image.
- In the Release File Downloads pane to the right, download the .vhd files for each SL1 appliance.
Converting a VHD Image File from Dynamic to Fixed
After downloading the ScienceLogic VHD file to a Windows server, you must convert it from Dynamic to Fixed.
To do this:
- Open a PowerShell session as an administrator.
- At the PowerShell prompt, navigate to the directory to which you downloaded the .vhd file.
-
For each .vhd file, run the following command:
Convert-VHD –Path <vhd_file_path> –DestinationPath <destination_file_path> –VHDType Fixed
where:
- vhd_file_path specifies the full path of the downloaded .vhd file, including the file name.
- destination_file_path specifies the full path to where you want to store the converted file, including the file name
-
If you see the following error, proceed to step 5. Otherwise, proceed to the next section.
convert-vhd: The term 'convert-vhd' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
-
To install the Hyper-V Module for Windows PowerShell, run the following command:
Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V-Management-PowerShell
-
To install Hyper-V Services, run the following command:
Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V -all
-
Reboot the server when prompted.
Uploading the VHD File to an Azure Container
To upload the ScienceLogic VHD file to your Blob container, perform the following steps:
-
Open Microsoft Azure PowerShell and log in to your Azure account:
Login-AzAccount
- You created a resource group and storage container blob to which you will upload your VHD image file in Configuring an Azure Resource Group and Storage Account. You identified the BLOB_URI in Obtaining the Container URL for an Azure Storage Account. Now you are ready to upload your VHD image file.
The virtual machine that you create in Creating an Azure Virtual Machine must be in the same resource group as the storage account.
- Add your VHD file to the storage account with the following cmdlet:
- BLOB_URI specifies the BLOB_URI you created in the section Creating the BLOB_URI where you will upload your VHD file. When entering the BLOB_URI, you must include the .vhd file name. For example: https://azuretest.blob.core.windows.net/vhds/em7inazure.vhd
- VHD_LOCAL_FILE_PATH specifies the file path on your machine for the VHD file you want to upload.
- RESOURCE_GROUP specifies the resource group you created and that will be used when you create the Azure VM.
Add-AzVhd -Destination '<BLOB_URI>' -LocalFilePath '<VHD_LOCAL_FILE_PATH>' -ResourceGroupName '<RESOURCE_GROUP>'
where:
- Repeat step 3 for each VHD file.
Creating the Image
The following steps require that you have an Azure resource group and storage account with the VHD file uploaded.
To create the image:
- Open Microsoft Azure PowerShell and log in to your Azure account:
Login-AzureRmAccount
- Run the following command:
- resource-group-name specifies the resource group you created in Azure.
- image-name specifies what you want to call the image (such as "dbimage123").
- BLOB_URI specifies the destination value you provided when you uploaded the VHD file. This is also the BLOB_URI you created in the section Creating the BLOB_URI. When entering the BLOB_URI, you must include the .vhd file name. For example: https://azuretest.blob.core.windows.net/vhds/em7inazure.vhd
- Repeat these steps for each SL1 appliance you want to build.
az image create --name <image-name> -g <resource-group-name> --os-disk-caching ReadWrite --os-type Linux --source <BLOB_URI>
where:
This command might return a large amount of JSON output. This is normal.
Creating an Azure Virtual Machine
The following steps require that you have an Azure resource group and storage account with the VHD file uploaded.
To create an Azure virtual machine:
-
Open Microsoft Azure PowerShell and log in to your Azure account:
Login-AzureRmAccount
- Run the following command:
- resource_group_name specifies the resource group you created in Azure.
- VM_name specifies what you want to call your virtual machine.
- image_name specifies the name you gave to the image when you created it in the section Creating the Image.
- ssh_key_name specifies the SSH key that you want to use within Azure. You will need this to SSH into the virtual machine. For more information, see https://learn.microsoft.com/en-us/azure/virtual-machines/ssh-keys-portal.
- disk_size specifies the virtual machine disk size you want to use.
- virtual_network_name specifies the virtual network name you want to use within Azure.
- subnet_name specifies the subnet name you want to use within Azure.
The virtual machine that you create must be in the same resource group as the storage account.
az vm create -g <resource_ group_ name> -n <vm_ name> --image <image_name> --public-ip-sku Standard --admin-username em7admin --authentication-type ssh --ssh-key-name <ssh_key_name> --os-disk-size-gb <disk_size> --storage-sku StandardSSD_LRS --vnet-name <virtual_ network_name> --subnet <subnet_name>
where:
If the public IP address is not available, ignore --public-ip-sku Standard in the command above.
- Repeat these steps for each SL1 appliance you want to build.
Setting the Virtual Machine Allocation Method to Static
To ensure the IP address for the virtual machine remains the same after reboot, you must set the allocation method to static. To do so:
- In the Azure Portal, navigate to the Virtual machine pane and verify that the virtual machine has a public IP address and a virtual network/subnet set.
- Click the name of the Virtual network/subnet. The Virtual network pane appears.
- In the “Connected devices” section of the Virtual network pane, click the Network interface. The Network interface pane appears.
- Click the Public IP address value, and then click the button.
- In the Network interface pane, click on Settings > IP addresses. Then, do one of the following:
- If you are not using a VPN, complete steps 6 through 9. Ignore step 10.
- If you are using a VPN, skip ahead to step 10.
- If you are not using a VPN, then in the IP addresses pane, select Enabled in the Public IP address field and then click on the IP address field.
- Click the button.
- In the Create public IP address pane, type a name for your IP address in the Name field and select Static in the Assignment field.
- Click and then click .
- If you are using a VPN, then in the IP addresses pane, select Disabled in the Public IP address field and then select a Subnet. You can use the default values for all other fields.
- Repeat these steps each SL1 appliance you want to build.
Configuring Ports on SL1 Appliances
You must next create a Network security group that will specify the ports required for communication between the SL1 appliances and that will specify the ports required for communication between the SL1 appliances and the monitored devices in your network.
To configure the ports for communication:
- In the Azure Portal, navigate to the Network security groups pane, and then click the button. The Create network security group pane appears.
- Type the information for the Network security group (name, subscription, resource group, and location), then click .
- In the Network security groups pane, click the newly created Network security group, and then click the button.
- In the Settings pane, click Inbound security rules.
- In the Inbound security rules pane, click the button. The Add inbound security rule pane appears.
- Use the table below to create security rules.
- Repeat steps 5 and 6 to create an inbound security rule for each of the ports listed in the table below.
- After creating all of the inbound security rules, navigate to the Virtual machine pane and click the button.
- In the Settings pane, click Network interfaces and then click on the name of the Network interface.
- In the Network interface pane, click the Network security group. button and then click
- Select the newly created network security group to associate it with the Network interface.
- Perform steps 9-11 for each network interface in your SL1 system.
ScienceLogic recommends that you limit the Source port range for security reasons.
Type | Protocol | Port | Description |
---|---|---|---|
SSH | TCP | 22 | SSH. This is necessary to start the installation wizard. |
SMTP | TCP | 25 | Necessary to receive inbound email for tickets, events, and email round-trip monitoring. |
HTTP | TCP | 80 | HTTP from browser session or user workstation. |
Custom TCP Rule | TCP | 123 | NTP. Communication between the All-In-One Appliance and configured NTP server. |
Custom UDP Rule | UDP | 161 | SNMP Agent. Allows SNMP information about the SL1 appliance to be collected by SL1. |
Custom UDP Rule | UDP | 162 | SNMP Traps. Necessary to receive SNMP traps from managed devices. |
HTTPS | TCP | 443 | HTTPS from browser session or user workstation. |
Custom UDP Rule | UDP | 514 | Syslog messages. Necessary to receive syslog messages from managed devices. |
Custom TCP Rule | TCP | 7700 | ScienceLogic Web Configurator. Configuration Utility from browser session or user workstation. This is necessary to license the appliance. |
Custom TCP Rule | TCP | 7705 | ScienceLogic PhoneHome. See Configuring SL1 for PhoneHome Communications. |
Custom TCP Rule | TCP | 7706 | MySQL. Communication from Administration Portal. |
Custom TCP Rule | TCP | 7707 | Data Pull. Allows the Database Server to retrieve data from the SL1 appliance. |
Custom TCP Rule | TCP | 8008 | Administrative Web Interface (PHPMyAdmin) from browser session on user workstation. |
Configuring the Virtual Machine
To configure each virtual machine, perform the following steps:
-
Use SSH to access the virtual machine using its public IP address, username, and the SSH key defined in step 2 of the section Creating an Azure Virtual Machine.
ssh -i <private key path> em7admin@<vm-ip-address>
-
Using vi or another text editor, edit the /etc/silo.conf file:
sudo visilo
-
Set the db password.
Troubleshooting
If the Data Collector continuously displays a message saying the collector is working when running a Dynamic Application, DO NOT restart the Azure virtual machine, as doing so could cause you to lose SSH access to the machine.
Instead, do the following:
- Using the command line interface, verify whether you can run the Dynamic Application in debug mode by typing the following command:
sudo /usr/local/silo/proc/dynamic_single.py <did> <app_id>
- Restart the data pull processes (em7_hfpulld, em7_lfpulld, em7_mfpulld) by typing the following command:
sudo service <service_name> restart