Use cloud-init to add a user to a Linux VM in Azure

Berlaku untuk: ✔️ Mesin Virtual Linux ✔️ Set skala fleksibel

This article shows you how to use cloud-init to add a user on a virtual machine (VM) or virtual machine scale sets (VMSS) at provisioning time in Azure. This cloud-init script runs on first boot once the resources have been provisioned by Azure. For more information about how cloud-init works natively in Azure and the supported Linux distros, see cloud-init overview.

Add a user to a VM with cloud-init

One of the first tasks on any new Linux VM is to add an additional user for yourself to avoid the use of root. SSH keys are best practice for security and usability. Keys are added to the ~/.ssh/authorized_keys file with this cloud-init script.

To add a user to a Linux VM, create a file in your current shell named cloud_init_add_user.txt and paste the following configuration. Untuk contoh ini, buat file di Cloud Shell, bukan di komputer lokal Anda. Anda dapat menggunakan editor apa pun yang diinginkan. Pastikan bahwa seluruh file cloud-init disalin dengan benar, terutama baris pertama. You need to provide your own public key (such as the contents of ~/.ssh/id_rsa.pub) for the value of ssh-authorized-keys: - it has been shortened here to simplify the example.

#cloud-config
users:
  - default
  - name: myadminuser
    groups: sudo
    shell: /bin/bash
    sudo: ['ALL=(ALL) NOPASSWD:ALL']
    ssh-authorized-keys:
      - ssh-rsa AAAAB3<snip>

Nota

The #cloud-config file includes the - default parameter included. This will append the user, to the existing admin user created during provisioning. If you create a user without the - default parameter - the auto generated admin user created by the Azure platform would be overwritten.

Sebelum menyebarkan gambar ini, And perlu membuat grup sumber daya dengan perintah az group create. Grup sumber daya Azure adalah kontainer logis tempat sumber daya Azure disebarkan dan dikelola. Contoh berikut ini menampilkan cara membuat grup sumber daya bernama myResourceGroup di lokasi eastus.

az group create --name myResourceGroup --location eastus

Sekarang, buat VM dengan az vm create dan tentukan file cloud-init dengan --custom-data cloud_init_add_user.txt sebagai berikut:

az vm create \
  --resource-group myResourceGroup \
  --name vmName \
  --image imageCIURN \
  --custom-data cloud_init_add_user.txt \
  --generate-ssh-keys

Nota

Replace myResourceGroup, vmName, and imageCIURN values accordingly. Make sure an image with Cloud-init is chosen.

SSH to the public IP address of your VM shown in the output from the preceding command. Enter your own user and publicIpAddress as follows:

ssh <user>@<publicIpAddress>

To confirm your user was added to the VM and the specified groups, view the contents of the /etc/group file as follows:

sudo cat /etc/group

The following example output shows the user from the cloud_init_add_user.txt file has been added to the VM and the appropriate group:

root:x:0:
<snip />
sudo:x:27:myadminuser
<snip />
myadminuser:x:1000:

Langkah berikutnya

Untuk contoh perubahan konfigurasi cloud-init tambahan, lihat artikel berikut ini:

• Menambahkan pengguna Linux lain ke VM
• Menjalankan manajer paket untuk memperbarui paket yang ada pada boot pertama
• Mengubah nama host lokal VM
• Menginstal paket aplikasi, memperbarui file konfigurasi, dan menginjeksi kunci