- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- Cloud Network Security
- :
- Discussion
- :
- Re: SPN expired on Azure VMSS
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
SPN expired on Azure VMSS
Hi Guys,
Can someone please help me with the exact commands to renew the SPN in checkpoint VMSS in Azure.
The SPN is already renewed on Azure. Now i am missing the commands to put the new secret in VMSS, I just want to be careful to not mess with existing template settings.
Thanks
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Nik5
Are you looking to update the existing CME Azure controller (account) with the new SPN?
There are 2 ways to do this:
1. CME API - Use the PUT method to update the Azure account. - PUT - Update Azure account
2. autoprov_cfg cli - Run the following command -
"autoprov_cfg set controller Azure -cn <controller_name> -aci <client_id> -acs <client_secret>"
If you need to grant the permissions for the SPN over the VMSS in Azure you can do that by adding a role assignment to the SPN in the "Access control (IAM)" section of the relevant resources in Azure portal
Feel free to reach out if you need any assistance
Thanks
Yair
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @Nik5
Are you looking to update the existing CME Azure controller (account) with the new SPN?
There are 2 ways to do this:
1. CME API - Use the PUT method to update the Azure account. - PUT - Update Azure account
2. autoprov_cfg cli - Run the following command -
"autoprov_cfg set controller Azure -cn <controller_name> -aci <client_id> -acs <client_secret>"
If you need to grant the permissions for the SPN over the VMSS in Azure you can do that by adding a role assignment to the SPN in the "Access control (IAM)" section of the relevant resources in Azure portal
Feel free to reach out if you need any assistance
Thanks
Yair