Greetings my fellow Technology Advocates and Specialists.
This is Chapter #2 of my Packer Series.
In this Session, I will demonstrate how to Automate image builds with Packer in Azure using Azure Devops.
I had the Privilege to talk on this topic in ONE Azure Communities:-
NAME OF THE AZURE COMMUNITY
TYPE OF SPEAKER SESSION
Cloud Lunch and Learn – 2024
Virtual
EVENT ANNOUNCEMENTS:-
CODE REPOSITORY:-
Hashi Packer Series With Azure and Devops:-
Greetings to my fellow Technology Advocates and Specialists.
In this Session, I talk and run Demo on PACKER SERIES in below TECH COMMUNITIES:-
NAME OF THE TECH COMMUNITIES:-
Cloud Lunch and Learn – 2024
DATE
TOPICS
CONTENT
01.05.2024
Build Windows Image With Packer CLI
https://dev.to/arindam0310018/hashi-packer-4082
01.05.2022
Build Windows Image with Packer and Azure Devops
https://dev.to/arindam0310018/hashi-packer-with-azure-devops-33ad
POINTS TO NOTE:-
1. Cloud Provider is Microsoft Azure.
2. CI/CD Platform is Microsoft Azure Devops.
3. For the purpose this blog post, we are building image for Windows using Packer and Azure Devops.
PRE-REQUISITES:-
1. Azure Subscription.
2. Azure Resource Group.
3. Azure Service Principal – This will be used by Packer to Authenticate.
4. Azure Service Principal having “Contributor” RBAC on Subscription or on the specific Resource Group where Packer will create Image.
5. Azure DevOps Organisation and Project.
6. Azure Resource Manager Service Connection in Azure DevOps.
7. Key Vault with 4 Secrets stored – 1) Azure Subscription ID, 2) Azure Tenant ID, 3) Azure Service Principal Client ID, and 4) Azure Service Principal Secret.
PACKER TEMPLATE (am-packer-template-v2.pkr.hcl):-
This template builds a Windows Server 2019 VM, installs IIS, then generalizes the VM with Sysprep.
The IIS install shows how you can use the PowerShell provisioner to run additional commands.
The final Packer image then includes the required software install and configuration.
type = string
default = “”
}
variable “tenant_id” {
type = string
default = “”
}
variable “client_id” {
type = string
default = “”
}
variable “client_secret” {
sensitive = true
type = string
default = “”
}
source “azure-arm” “am-image” {
subscription_id = var.subscription_id
tenant_id = var.tenant_id
client_id = var.client_id
client_secret = var.client_secret
managed_image_name = “am-image-v1”
managed_image_resource_group_name = “am-packer-rg”
communicator = “winrm”
image_offer = “WindowsServer”
image_publisher = “MicrosoftWindowsServer”
image_sku = “2019-Datacenter”
location = “westeurope”
os_type = “Windows”
vm_size = “Standard_B4ms”
winrm_insecure = “true”
winrm_timeout = “5m”
winrm_use_ssl = “true”
winrm_username = “packeradmin”
}
build {
sources = [“source.azure-arm.am-image”]
provisioner “powershell” {
inline = [“Add-WindowsFeature Web-Server”, “while ((Get-Service RdAgent).Status -ne ‘Running’) { Start-Sleep -s 5 }”, “while ((Get-Service WindowsAzureGuestAgent).Status -ne ‘Running’) { Start-Sleep -s 5 }”, “& $env:SystemRoot\System32\Sysprep\Sysprep.exe /oobe /generalize /quiet /quit”, “while($true) { $imageState = Get-ItemProperty HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\State | Select ImageState; if($imageState.ImageState -ne ‘IMAGE_STATE_GENERALIZE_RESEAL_TO_OOBE’) { Write-Output $imageState.ImageState; Start-Sleep -s 10 } else { break } }”]
}
}
PIPELINE CODE SNIPPET:-
| AZURE DEVOPS YAML PIPELINE (azure-pipelines-build-image-with-packer-v1.0.yml):- |
none
######################
# Declare Parameters:-
######################
parameters:
– name: KVName
displayName: Please Provide the Keyvault Name:-
type: object
default: ampockv
values:
– ampockv
######################
#DECLARE VARIABLES:-
######################
variables:
ServiceConnection: amcloud-cicd-service-connection
BuildAgent: windows-latest
packerfile: ‘$(Build.SourcesDirectory)/Packer/am-packer-template-v2.pkr.hcl’
envName: NonProd
#########################
# Declare Build Agents:-
#########################
pool:
vmImage: $(BuildAgent)
###################
# Declare Stages:-
###################
stages:
– stage: BUILD_IMAGE_PACKER
jobs:
– job: BUILD_IMAGE_PACKER
displayName: BUILD IMAGE PACKER
steps:
################################
# Download Keyvault Secrets:-
################################
– task: AzureKeyVault@2
displayName: Fetch all Secrets from Keyvault
inputs:
azureSubscription: ‘$(ServiceConnection)’
KeyVaultName: ‘${{ parameters.KVName }}’
SecretsFilter: ‘*’
RunAsPreJob: false
####################################
# Build Windows Image with Packer:-
####################################
– task: AzureCLI@2
displayName: Build Image With Packer
inputs:
azureSubscription: $(ServiceConnection)
scriptType: ps
scriptLocation: inlineScript
inlineScript: |
packer
packer plugins install github.com/hashicorp/azure
packer build -var “client_id=$(clientId)” -var “client_secret=$(clientsecret)” -var “subscription_id=$(subsId)” -var “tenant_id=$(tenantId)” -on-error=abort -force $(packerfile)
TEST THE PIPELINE EXECUTION:-
1. Pipeline executed successfully.
2. Windows Image created successfully using Packer and Azure Devops.
Hope You Enjoyed the Session!!!
Stay Safe | Keep Learning | Spread Knowledge
