You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
@@ -44,7 +44,7 @@ In most cases, the location you select when you create the installation script s
44
44
45
45
The following versions of the Windows and Linux operating system are officially supported for the Azure Connected Machine agent:
46
46
47
-
- Windows Server 2012 R2 and higher
47
+
- Windows Server 2012 R2 and higher (including Windows Server Core)
48
48
- Ubuntu 16.04 and 18.04
49
49
50
50
>[!NOTE]
@@ -61,6 +61,15 @@ The following versions of the Windows and Linux operating system are officially
61
61
62
62
Before configuring your machines with Azure Arc for servers (preview), you should review the Azure Resource Manager [subscription limits](../../azure-resource-manager/management/azure-subscription-service-limits.md#subscription-limits) and [resource group limits](../../azure-resource-manager/management/azure-subscription-service-limits.md#resource-group-limits) to plan for the number of machines to be connected.
63
63
64
+
## TLS 1.2 protocol
65
+
66
+
To ensure the security of data in transit to Azure, we strongly encourage you to configure machine to use Transport Layer Security (TLS) 1.2. Older versions of TLS/Secure Sockets Layer (SSL) have been found to be vulnerable and while they still currently work to allow backwards compatibility, they are **not recommended**.
67
+
68
+
|Platform/Language | Support | More Information |
69
+
| --- | --- | --- |
70
+
|Linux | Linux distributions tend to rely on [OpenSSL](https://www.openssl.org) for TLS 1.2 support. | Check the [OpenSSL Changelog](https://www.openssl.org/news/changelog.html) to confirm your version of OpenSSL is supported.|
71
+
| Windows Server 2012 R2 and higher | Supported, and enabled by default. | To confirm that you are still using the [default settings](https://docs.microsoft.com/windows-server/security/tls/tls-registry-settings).|
72
+
64
73
### Networking Configuration
65
74
66
75
The Connected Machine agent for Linux and Windows communicates outbound securely to Azure Arc over TCP port 443. If the machine connects through a firewall or proxy server to communicate over the Internet, review requirements below to understand the network configuration requirements.
@@ -117,14 +126,20 @@ You can also register the resource providers in the Azure portal by following th
117
126
118
127
## Connected Machine agent
119
128
120
-
You can download the Azure Connected Machine Agent package for Windows and Linux from the locations listed below.
129
+
You can download the Azure Connected Machine agent package for Windows and Linux from the locations listed below.
121
130
122
131
-[Windows agent Windows Installer package](https://aka.ms/AzureConnectedMachineAgent) from the Microsoft Download Center.
123
132
- Linux agent package is distributed from Microsoft's [package repository](https://packages.microsoft.com/) using the preferred package format for the distribution (.RPM or .DEB).
124
133
125
134
>[!NOTE]
126
135
>During this preview, only one package has been released, which is suitable for Ubuntu 16.04 or 18.04.
127
136
137
+
The Azure Connected Machine agent for Windows and Linux can be upgraded to the latest release manually or automatically depending on your requirements. For Windows, the agent update can be automatically accomplished using Windows Update and for Ubuntu, using the [apt](https://help.ubuntu.com/lts/serverguide/apt.html) command-line tool.
138
+
139
+
### Agent status
140
+
141
+
The Connected Machine agent sends a regular heartbeat message to the service every 5 minutes. If one is not received for 15 minutes, the machine is considered offline and the status will automatically be changed to **Disconnected** in the portal. Upon receiving a subsequent heartbeat message from the Connected Machine agent, its status will automatically be changed to **Connected**.
142
+
128
143
## Install and configure agent
129
144
130
145
Connecting machines in your hybrid environment directly with Azure can be accomplished using different methods depending on your requirements. The following table highlights each method to determine which works best for your organization.
@@ -134,7 +149,6 @@ Connecting machines in your hybrid environment directly with Azure can be accomp
134
149
| Interactively | Manually install the agent on a single or small number of machines following the steps in [Connect machines from Azure portal](onboard-portal.md).<br> From the Azure portal, you can generate a script and execute it on the machine to automate the install and configuration steps of the agent.|
135
150
| At scale | Install and configure the agent for multiple machines following the [Connect machines using a Service Principal](onboard-service-principal.md).<br> This method creates a service principal to connect machines non-interactively.|
136
151
137
-
138
152
## Next steps
139
153
140
154
- To begin evaluating Azure Arc for servers (preview), follow the article [Connect hybrid machines to Azure from the Azure portal](onboard-portal.md).
0 commit comments