Connecting to an ADFS Stamp

HOST VM OF THE STAMP TO BE CONFIGURED

On AzS Development Kits, sign in to the physical host.

On multi-node integrated systems, the host must be a system that can access admin end point.

1. Place the RegisterBillingWithIdentitySystem.ps1 file in a temp folder. This file can be found in the install folder of Host VM where Billing resource provider was installed: c:\CloudAssert\BillingRP\BillingApp\

2. Open a new elevated (administrative) PowerShell console and change to the above directory. Use a new window to avoid problems that might arise from incorrect PowerShell modules that are already loaded on the system

3. Run the RegisterBillingWithIdentitySystem.ps1 script with appropriate parameters

.\RegisterBillingWithIdentitySystem.ps1 -ServiceAdminUser '' -AzureStackAdminResourceManagerEndpoint '' -AzureDirectoryTenantId '' -AzureEnvironment 'AzureCloud' -IdentitySystemType 'ADFS' -PrivilegedEndpoint '192.168.200.224' -CloudAdminUser '' -adminSubscriptionId ''

Eg:
.\RegisterBillingWithIdentitySystem.ps1 -ServiceAdminUser '[email protected]' -AzureStackAdminResourceManagerEndpoint 'https://adminmanagement.local.contoso.com' -AzureDirectoryTenantId  'eef3d6b3-cf97-42c1-9cc5-f68905cdd1a6' -AzureEnvironment 'AzureCloud' -IdentitySystemType 'ADFS' - PrivilegedEndpoint ‘191.168.200.224’ -CloudAdminUser '[email protected]' -adminSubscriptionId 'a7f2bc5b-2287-4a8b-b256-dcb14dd06878'

The script outputs BillingRegistrationOutput.txt in the same folder having all the information needed to add a new azure stack connection in Billing using the billing tool command. (Refer: Connection with Certificate Thumbprint)

Billing Resource Provider VM

To support certificate authentication, import the .pfx file generated in the above step into Billing resource provider VM. Ensure the certificate is imported into the Personal store of this VM.