Consolidate IoT Hub Create docs

kgremban · kgremban · commit a0d932f12dd7 · 2024-06-20T15:16:36.000-07:00
diff --git a/articles/iot-hub/.openpublishing.redirection.iot-hub.json b/articles/iot-hub/.openpublishing.redirection.iot-hub.json
@@ -1420,6 +1420,16 @@
       "redirect_url": "/azure/iot-hub/reference-iot-hub-extension",
       "redirect_document_id": false
     },
+    {
+      "source_path_from_root": "/articles/iot-hub/iot-hub-create-through-portal.md",
+      "redirect_url": "/azure/iot-hub/create-hub",
+      "redirect_document_id": true
+    },
+    {
+      "source_path_from_root": "/articles/iot-hub/iot-hub-create-using-cli.md",
+      "redirect_url": "/azure/iot-hub/create-hub",
+      "redirect_document_id": false
+    },
     {
       "source_path_from_root": "/articles/iot-hub/iot-hub-rm-template.md",
       "redirect_url": "/azure/iot-hub/iot-hub-rm-template-powershell",
diff --git a/articles/iot-hub/create-hub.md b/articles/iot-hub/create-hub.md
@@ -0,0 +1,139 @@
+---
+title: Create an IoT hub
+titleSuffix: Azure IoT Hub
+description: How to create, manage, and delete Azure IoT hubs through the Azure portal and CLI. Includes information about pricing tiers, scaling, security, and messaging configuration.
+author: kgremban
+
+ms.author: kgremban
+ms.service: iot-hub
+ms.topic: how-to
+ms.date: 06/10/2024
+ms.custom: ['Role: Cloud Development']
+---
+
+# Create an IoT hub using the Azure portal
+
+This article describes how to create and manage an IoT hub.
+
+## Prerequisites
+
+* Depending on which tool you use, either have access to the [Azure portal](https://portal.azure.com) or [install the Azure CLI](/cli/azure/install-azure-cli).
+
+## Create an IoT hub
+
+### [Azure portal](#tab/portal)
+
+[!INCLUDE [iot-hub-include-create-hub](../../includes/iot-hub-include-create-hub.md)]
+
+### [Azure CLI](#tab/cli)
+
+Use the Azure CLI to create a resource group and then add an IoT hub.
+
+Use the [iz iot hub create](/cli/azure/iot/hub#az-iot-hub-create) command to create an IoT hub in your resource group, using a globally unique name for your IoT hub. For example:
+
+```azurecli-interactive
+az iot hub create --name <NEW_NAME_FOR_YOUR_IOT_HUB> \
+   --resource-group <RESOURCE_GROUP_NAME> --sku S1
+```
+
+[!INCLUDE [iot-hub-pii-note-naming-hub](../../includes/iot-hub-pii-note-naming-hub.md)]
+
+The previous command creates an IoT hub in the S1 pricing tier for which you're billed. For more information, see [Azure IoT Hub pricing](https://azure.microsoft.com/pricing/details/iot-hub/).
+
+---
+
+## Update an IoT hub
+
+You can change the settings of an existing IoT hub after it's created. Here are some properties you can set for an IoT hub:
+
+* **Pricing and scale**: Migrate to a different tier or set the number of IoT Hub units.
+
+* **IP Filter**: Specify a range of IP addresses for the IoT hub to accept or reject.
+
+* **Properties**: A list of properties that you can copy and use elsewhere, such as the resource ID, resource group, location, and so on.
+
+### [Azure portal](#tab/portal)
+
+### [Azure CLI](#tab/cli)
+
+Use the [az iot hub update](/cli/azure/iot/hub#az-iot-hub-update) command to make changes to an existing IoT hub.
+
+---
+
+## Connect to an IoT hub
+
+Provide access permissions to applications and services that use IoT Hub functionality.
+
+### Connect with a connection string
+
+Connection strings are an easy way to get started with IoT Hub, and are used in many samples and tutorials, but aren't recommended for production scenarios.
+
+Shared access policies define permissions for devices and services to connect to IoT Hub. The built-in policies provide one or more of the following permissions. You should always provide the least necessary permissions for a given scenario.
+
+* The **Registry Read** and **Registry Write** permissions grant read and write access rights to the identity registry. These permissions are used by back-end cloud services to manage device identities. 
+
+* The **Service Connect** permission grants permission to access service endpoints. This permission is used by back-end cloud services to send and receive messages from devices. It's also used to update and read device twin and module twin data.
+
+* The **Device Connect** permission grants permissions for sending and receiving messages using the IoT Hub device-side endpoints. This permission is used by devices to send and receive messages from an IoT hub or update and read device twin and module twin data. It's also used for file uploads.
+
+For information about the access granted by specific permissions, see [IoT Hub permissions](./iot-hub-dev-guide-sas.md#access-control-and-permissions).
+
+
+#### [Azure portal](#tab/portal)
+
+To get the IoT Hub connection string for the **service** policy, follow these steps:
+
+1. In the [Azure portal](https://portal.azure.com), select **Resource groups**. Select the resource group where your hub is located, and then select your hub from the list of resources.
+
+1. On the left-side pane of your IoT hub, select **Shared access policies**.
+
+1. From the list of policies, select the **service** policy.
+
+1. Copy the **Primary connection string** and save the value.
+
+
+#### [Azure CLI](#tab/cli)
+
+IoT hubs are created with several default access policies. One such policy is the **service** policy, which provides sufficient permissions for a service to read and write the IoT hub's endpoints. Run the following command to get a connection string for your IoT hub that adheres to the service policy:
+
+```azurecli-interactive
+az iot hub connection-string show --hub-name YOUR_IOT_HUB_NAME --policy-name service
+```
+
+The service connection string should look similar to the following example:
+
+```javascript
+"HostName=<IOT_HUB_NAME>.azure-devices.net;SharedAccessKeyName=service;SharedAccessKey=<SHARED_ACCESS_KEY>"
+```
+
+---
+
+### Connect with role assignments
+
+In production scenarios, we recommend using Microsoft Entra ID and Azure role-based access control (Azure RBAC) for connecting to IoT Hub. For more information, see [Control access to IoT Hub by using Microsoft Entra ID](./authenticate-authorize-azure-ad.md).
+
+## Delete an IoT hub
+
+### [Azure portal](#tab/portal)
+
+To delete an IoT hub, open your IoT hub in the Azure portal, then choose **Delete**.
+
+:::image type="content" source="./media/iot-hub-create-through-portal/delete-iot-hub.png" alt-text="Screenshot showing where to find the delete button for an IoT hub in the Azure portal." lightbox="./media/iot-hub-create-through-portal/delete-iot-hub.png":::
+
+### [Azure CLI](#tab/cli)
+
+To [delete an IoT hub](/cli/azure/iot/hub#az-iot-hub-delete), run the following command:
+
+```azurecli-interactive
+az iot hub delete --name {your iot hub name} -\
+  -resource-group {your resource group name}
+```
+
+---
+
+## Next steps
+
+Learn more about managing Azure IoT Hub:
+
+* [Message routing with IoT Hub](how-to-routing-portal.md)
+* [Monitor your IoT hub](monitor-iot-hub.md)
diff --git a/articles/iot-hub/iot-hub-create-through-portal.md b/articles/iot-hub/iot-hub-create-through-portal.md
diff --git a/articles/iot-hub/iot-hub-create-use-iot-toolkit.md b/articles/iot-hub/iot-hub-create-use-iot-toolkit.md
@@ -7,6 +7,7 @@ ms.author: junhan
 ms.service: iot-hub
 ms.topic: how-to
 ms.date: 01/04/2019
+robots: NOINDEX
 ---
 
 # Create an IoT hub using the Azure IoT Hub extension for Visual Studio Code
@@ -57,13 +58,3 @@ The following steps show how to create an IoT hub in Visual Studio Code (VS Code
 
 > [!TIP]
 > There is no option to delete your IoT hub in Visual Studio Code, however you can [delete your hub in the Azure portal](iot-hub-create-through-portal.md#delete-an-iot-hub).
-
-## Next steps
-
-Now that you've deployed an IoT hub using the Azure IoT Hub extension for Visual Studio Code, explore these articles:
-
-- [Use the Azure IoT Hub extension for Visual Studio Code to send and receive messages between your device and an IoT hub](iot-hub-vscode-iot-toolkit-cloud-device-messaging.md).
-
-- [Use the Azure IoT Hub extension for Visual Studio Code for Azure IoT Hub device management](iot-hub-device-management-iot-toolkit.md)
-
-- [See the Azure IoT Hub extension for Visual Studio Code wiki page](https://github.com/microsoft/vscode-azure-iot-toolkit/wiki).
diff --git a/articles/iot-hub/iot-hub-create-using-cli.md b/articles/iot-hub/iot-hub-create-using-cli.md
@@ -60,30 +60,11 @@ You can change the settings of an existing IoT hub after it's created. Here are
 
 For a complete list of options to update an IoT hub, see the [**az iot hub update** commands](/cli/azure/iot/hub#az-iot-hub-update) reference page.
 
-## Register a new device in the IoT hub
-
-In this section, you create a device identity in the identity registry in your IoT hub. A device can't connect to a hub unless it has an entry in the identity registry. For more information, see [Understand the identity registry in your IoT hub](iot-hub-devguide-identity-registry.md). This device identity is [IoT Edge](../iot-edge/index.yml) enabled.
-
-Run the following command to create a device identity. Use your IoT hub name and create a new device ID name in place of `{iothub_name}` and `{device_id}`. This command creates a device identity with default authorization (shared private key).
-
-```azurecli-interactive
-az iot hub device-identity create -n {iothub_name} -d {device_id} --ee
-```
-
-The result is a JSON printout which includes your keys and other information.
-
-Alternatively, there are several options to register a device using different kinds of authorization. To explore the options, see [Examples](/cli/azure/iot/hub/device-identity#az-iot-hub-device-identity-create-examples) on the **az iot hub device-identity** reference page.
-
 ## Remove an IoT hub
 
 There are various commands to [delete an individual resource](/cli/azure/resource), such as an IoT hub.
 
-To [delete an IoT hub](/cli/azure/iot/hub#az-iot-hub-delete), run the following command:
 
-```azurecli-interactive
-az iot hub delete --name {your iot hub name} -\
-  -resource-group {your resource group name}
-```
 
 ## Next steps
 
diff --git a/articles/iot-hub/iot-hubs-manage-device-twin-tags.md b/articles/iot-hub/iot-hubs-manage-device-twin-tags.md
@@ -159,4 +159,4 @@ To try out some of the concepts described in this article, see the following IoT
 
 * [How to use the device twin](device-twins-node.md)
 * [How to use device twin properties](tutorial-device-twins.md)
-* [Device management with the Azure IoT Hub extension for VS Code](iot-hub-device-management-iot-toolkit.md)
+
diff --git a/articles/iot-hub/quickstart-send-telemetry-cli.md b/articles/iot-hub/quickstart-send-telemetry-cli.md
@@ -73,9 +73,6 @@ Azure CLI requires you to be logged into your Azure account. All communication b
 
 In this section, you use the Azure CLI to create a resource group and an IoT hub.  An Azure resource group is a logical container into which Azure resources are deployed and managed. An IoT hub acts as a central message hub for bi-directional communication between your IoT application and the devices.
 
-> [!TIP]
-> Optionally, you can create an Azure resource group, an IoT hub, and other resources by using the [Azure portal](iot-hub-create-through-portal.md), [Visual Studio Code](iot-hub-create-use-iot-toolkit.md), or other programmatic methods.  
-
 1. In the first CLI session, run the [az group create](/cli/azure/group#az-group-create) command to create a resource group. The following command creates a resource group named *MyResourceGroup* in the *eastus* location.
 
     ```azurecli
