Versions Compared

Old Version 4

changes.mady.by.user Sarabjeet Kaur

Saved on

compared with

New Version Current

changes.mady.by.user Sarabjeet Kaur

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Applies to:Image RemovedKyvos Enterprise  Image RemovedKyvos Cloud (Managed Services on AWS)  Image RemovedKyvos Azure Marketplace

Image RemovedKyvos AWS Marketplace  Image RemovedKyvos Single Node Installation (Kyvos SNI)  Image RemovedKyvos Free (Limited offering for AWS)

...

Applies to: (tick) Kyvos Enterprise  (error) Kyvos Cloud (SaaS on AWS) (error) Kyvos AWS Marketplace

(error) Kyvos Azure Marketplace   (error) Kyvos GCP Marketplace (error) Kyvos Single Node Installation (Kyvos SNI)

...

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#DEEBFF

Note

This is not required if the Virtual Private Cloud (VPC) is newly created from the Kyvos-provided template.

Download the AzureCustomRole_DeploymentUser.json file from the Azure Installation Files folder and keep it handy.

Creating a custom role

  1. Log in to the Azure portal.

  2. Navigate to Virtual Network and click Properties on the navigation bar. Copy the Resource ID and paste it onto a notepad. You will need this for creating the custom role.

...

  1. Image Added

  2. Navigate to the Network Security group and click Properties on the navigation bar. Copy the Resource ID and paste it onto a notepad. You will need this for creating the custom role.

...

  1. Image Added

  2. Navigate to Resource Group and click Access Control (IAM) on the navigation bar.

  3. Click Add > Add custom role as shown below.

...

  1. Image Added

  2. Click the JSON tab, and then click Edit.

  3. Delete the existing JSON text.

  4. Copy the text from the AzureCustomRole_DeploymentUser.json file and paste it into the JSON textbox.

  5. Replace the <Virtual Network Resource ID> and <Security Group Resource ID> with the respective Resource IDs that you copied earlier (in steps 2-3).

    Image Modified

  6. Click Save. The JSON automatically assigns the required permissions.

  7. Now go to the Basics tab, and provide a unique name for your role.

  8. Click on Review + Create. Then click Create.

...

  1. Image Added

Attach Role to User

Once you have created a custom role on Azure, you need to attach attach the role to the deployment user. For this, perform the following steps.

  1. Go to the Network Security group and click Access Control (IAM).

  2. Click Add > Add role assignment.

...

  1. Image Added

  2. On the Role Assignment pane, enter details as:

    1. Role: Search and select the custom role that you created (in the previous steps). 

    2. Assign Access To: Select the User, group, or service principal option. 

    3. Select: Select the User to which you want to add this role. 

  3. Click Review+Assign.

...

  1. Image Added

  2. Navigate to Virtual Network, click Access Control(IAM) and then add the same Role and assign to the same USER that you used for the Network Security Group and click Save.