How can we connect to Azure VM with Private IP from Azure Automation powershell runbook?

Question

How can we connect to Azure VM with Private IP from Azure Automation powershell runbook?

Not able to connect to VM:

$Password = "<>"
$User = "<>"
$ComputerName = "<>"
$Command = "hostname"

Test-Connection -ComputerName 10.164.104.38

$password = ConvertTo-SecureString $Password -AsPlainText -Force
$Cred = New-Object System.Management.Automation.PSCredential ($User, $password)

New-SSHSession -ComputerName $ComputerName -Credential $Cred #Connect Over SSH

Get-SSHSession

Invoke-SSHCommand -Index 0 -Command 'hostname' # Invoke Command Over SSH

Using this script I am getting connection time out.

Answer 1

Carlos Villagomez 861

Hi @Goel, Akanksha ,

Thank you for your post! I can see that you are currently running the runbook from an Azure Sandbox which is the default cloud worker rather than a Hybrid Runbook worker.

Azure sandboxes are like random internet systems because they are used by all Azure customers by default. We do not create individual sandboxes on your local network so it will never be able to connect directly to your VM on a private network. You can however run your Automation runbooks on a Hybrid runbook worker directly on an Azure or non-Azure machine per the following document here.

As an alternative, you could also issue a command from an Azure Cloud Runbook that runs a script on your Azure VM using Invoke-AzVMRunCommand since the runbook at that point would not be connecting directly to the Azure VM. I have a attached a couple of sample scripts you can use for testing this method as well.

Please let me know if you have any further questions or concerns.

Thanks!
Carlos V.

Carlos Villagomez 861 Reputation points

2022-08-26T21:18:13.44+00:00

Hi @Goel, Akanksha ,

I am just following up to see if you had the chance to review my last message?

In addition, I am following up to share that you will have to update the script and make the following update to the child script:
$MyScript = @'
$Filename="C:\test\LogAnalyticdata.csv"
if (Test-path $filename) {(get-itemproperty $Filename}
else {"File Not Found: $Filename"}
'@

You would then have to replace the bolded section with your PowerShell script code. It will then run the script on your Azure VM and would only need to update the rest of the script if you were wanting to change the number of retries or wanting to change it to run again a Linux VM since Invoke-AzVMRunCommand syntax for Linux is slightly different.

Please let me know if you have any questions or concerns.

Thanks!
Carlos V.
Goel, Akanksha 66 Reputation points

2022-09-08T12:27:26.21+00:00

Hi @Carlos Villagomez , How to run the parent and child script together in single runbook? Can we have call to discuss on this?
Carlos Villagomez 861 Reputation points

2022-09-12T15:31:04.54+00:00

Hello @Goel, Akanksha ,

Thank you for your response. I just wanted to clarify from my previous response that the parent and child script approach requires running both scripts on your Azure VM using the Invoke-AzVMRunCommand cmdlet in order to get the Windows or Linux VM's PS information from the runbook and then run the OS related remotely. For further instructions on how to connect your VM to Azure Runbook, please reference the following thread here on how to run both runbook scripts on the VM and to help guide you through the process.

Please let me know if you have any further questions or concerns

Thanks,
Carlos V.
Carlos Villagomez 861 Reputation points

2022-09-12T15:33:00.057+00:00

@Goel, Akanksha ,

If you have a support plan then to request assistance with a troubleshooting call here, I recommend you reach out to the Azure technical support team by raising a support ticket as mentioned here.

Answer 2

Hi GoelAkanksha-9319,

The Script you've provided it seems to have no error, to know exact reason what's the full error you're getting "Unable to Connect to ....Azure AD etc"

You can troubleshoot you error by following steps mentioned in this Documentation :- https://learn.microsoft.com/azure/automation/troubleshoot/runbooks

I would also recommend you to go through https://learn.microsoft.com/azure/automation/how-to/private-link-security and check all steps are followed and configuration are correct or not.

---------------------------------------------------------------------------------------------------------------------

--If the reply is helpful, please Upvote and Accept it as an answer–

How can we connect to Azure VM with Private IP from Azure Automation powershell runbook?

Test-Connection -ComputerName 10.164.104.38

Get-SSHSession

2 answers

Activity