provide Powershell cmdlets for deployment, management and maintenance of Update Management feature
We updated our cmdlets to include some missing functionality missed below, such as Reboot and groups https://docs.microsoft.com/en-us/powershell/module/az.automation/New-AzAutomationSoftwareUpdateConfiguration?view=azps-1.6.0
Will you create something like Set-AzureRmAutomationSoftwareUpdateConfiguration?
I would like to be able to change the existing schedulers instead of creating new ones.
Is there a way to onboard VMs on Update management using Powershell.
These commandlets only allow you to create and remove settings related to update management.
How does one programatically onboard a VM onto update management without using ARM templates?
André van der Goes commented
We have had an issue where we could not schedule updates for clients in another tenant. This has been resolved by using the ttps://azure.microsoft.com/en-us/updates/azurerm-automation-6-0-preview/ cmdlets (with help from microsoft support).
However, these cmdlets do not allow to set the "rebootSetting". I've looked at the REST api as well but also there the "rebootSetting" is always reported as "ifRequired", regardless of the setting in the portal.
So in the portal you can set reboot to never, but the api will still report "IfRequired". And as said, the cmdlets have no option to set it at all.
Any workaround for that (save maybe via an ARM template, which feels a bit clunky for this, but I havent tested that yet)
Can you add the functionality to attach a Runbook to the pre-script/post-scripts of an update deployment as part of New-AzureRmAutomationSoftwareUpdateConfiguration?
Can New-AzureRmAutomationSoftwareUpdateConfiguration command support multiple VM's backup under one update scheduled deployment?
Under each scheduled deployment, the "Machines to update" option in the UI allows us to select "Import Groups (AD/SCCM/WSUS). However, there is not powershell cmdlet option to do this. Would this get added soon? We have separated our IaaS machines in different patch windows based on AD groups.
Since the Update Management allows the user to create schedule update deployments for monthly patches using the UI, is there a powershell commandlets to do this? We have multiple VMs in Azure and for different environments, We would like to use runbook to calculate patch week and create a "schedule update deployment" within the same script to accomplish this.
When I deploy a VM I need the cmdlets or ARM script to enable the update management feature on the VM. Bit like extensions etc.
Brian Moore commented
I think a general REST API for this would be helpful, that way PowerShell can utilize this, as well as other languages.