Kaido Jarvemets - Logo

Az.ManagedServiceIdentity PowerShell Module

When you onboard a node to Azure Arc, you will also receive a system-assigned managed identity for that server. This managed identity provides a unique security identity for your server, and enables you to delegate different permissions for Azure resources such as Azure Key Vault. With this managed identity, you can create and manage Azure resource access policies and access controls, and can use it to securely authenticate and authorize your server to access Azure services and resources. This opens up many more possibilities and use cases for Azure Arc, and allows you to better secure and manage your hybrid and multi-cloud environments.

I recommend reading Authenticate against Azure resources with Azure Arc-enabled servers article.

You can install the Az.ManagedServiceIdentity PowerShell module directly from the PowerShell Gallery.

				
					Install-Module -Name Az.ManagedServiceIdentity -Force -Verbose

Run the following command to print out all the command lets in Az.ManagedServiceIdentity PowerShell module

  • Get-Command -Module Az.ManagedServiceIdentity
				
					Get-AzFederatedIdentityCredentials
New-AzFederatedIdentityCredentials
Remove-AzFederatedIdentityCredentials
Update-AzFederatedIdentityCredentials
Get-AzFederatedIdentityCredential
Get-AzSystemAssignedIdentity
Get-AzUserAssignedIdentity
Get-AzUserAssignedIdentityAssociatedResource
New-AzFederatedIdentityCredential
New-AzUserAssignedIdentity
Remove-AzFederatedIdentityCredential
Remove-AzUserAssignedIdentity
Update-AzFederatedIdentityCredential
Update-AzUserAssignedIdentity

Get-AzSystemAssignedIdentity example

Gets the systemAssignedIdentity available under the specified RP scope.

				
					Get-AzSystemAssignedIdentity -Scope "/subscriptions/XXXXXX/resourceGroups/RG-PROD-IT-ARC/providers/Microsoft.HybridCompute/machines/ADFS01"

Get-AzSystemAssignedIdentity lists the following information

  • ClientID
  • ClientSecretUrl
  • Id
  • Location
  • Name
  • PrincipalId
  • ResourceGroupName
  • SystemData
  • SystemDataCreatedAt
  • SystemDataCreatedByType
  • SystemDataLastModifiedAt
  • SystemDataLastModifiedBy
  • SystemDataLastModifiedByType
  • Tag
  • TenantID
  • Type

Get-AzSystemAssignedIdentity

Leave a Comment

Contact me

If you’re interested in learning about Az.ManagedServiceIdentity PowerShell Module. I can help you understand how this solution can benefit your organization and provide a customized solution tailored to your specific needs.

Table of Contents

  • September 4, 2024

WARNING: Don’t Manage Another Server Without This Azure Arc Training!

  • December 10, 2024

One-Day Training on Mastering Azure Update Manager

  • November 15, 2024

One-Day Training on Implementing Defender for Servers

You might also like...

Ready to get started?

SUBSCRIBE NOW
Kaido Jarvemets - Logo

© 2024

Home

About Me

Services

Blog

Events

Contact Me

FOLLOW ME ON