Merge pull request #100799 from msLinuxNinja/master

BYOS Link and Document updates

Author: ttorble

.openpublishing.redirection.json

@@ -45654,10 +45654,21 @@
       "redirect_url": "/azure/media-services/latest/content-aware-encoding",
       "redirect_document_id": true
     },
+    {
+      "source_path": "articles/virtual-machines/workloads/redhat/redhat-byos.md",
+      "redirect_url": "/azure/virtual-machines/workloads/redhat/byos",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "articles/virtual-machines/workloads/redhat/redhat-overview.md",
+      "redirect_url": "/azure/virtual-machines/workloads/redhat/overview",
+      "redirect_document_id": false
+    },
     {
       "source_path": "articles/load-balancer/load-balancer-arm.md",
       "redirect_url": "/azure/load-balancer/load-balancer-overview",
       "redirect_document_id": true
     }
   ]
-}
+}
+

articles/virtual-machines/linux/redhat-create-upload-vhd.md

@@ -930,6 +930,6 @@ Rebuild initramfs:
 For more details, see the information about [rebuilding initramfs](https://access.redhat.com/solutions/1958).
 
 ## Next steps
-You're now ready to use your Red Hat Enterprise Linux virtual hard disk to create new virtual machines in Azure. If this is the first time that you're uploading the .vhd file to Azure, see [Create a Linux VM from a custom disk](upload-vhd.md#option-1-upload-a-vhd).
-
-For more details about the hypervisors that are certified to run Red Hat Enterprise Linux, see [the Red Hat website](https://access.redhat.com/certified-hypervisors).
+* You're now ready to use your Red Hat Enterprise Linux virtual hard disk to create new virtual machines in Azure. If this is the first time that you're uploading the .vhd file to Azure, see [Create a Linux VM from a custom disk](upload-vhd.md#option-1-upload-a-vhd).
+* For more details about the hypervisors that are certified to run Red Hat Enterprise Linux, see [the Red Hat website](https://access.redhat.com/certified-hypervisors).
+* To learn more about using production-ready RHEL BYOS images, go to the documentation page for [BYOS](../workloads/redhat/byos.md).

articles/virtual-machines/linux/update-infrastructure-redhat.md

@@ -29,7 +29,7 @@ Information on Red Hat support policies for all versions of RHEL can be found on
 ## Important information about Azure RHUI
 
 * Azure RHUI is the update infrastructure that supports all RHEL PAYG VMs created in Azure. This does not preclude you from registering your PAYG RHEL VMs with Subscription Manager or Satellite or other source of updates, but doing so with a PAYG VM will result in indirect double-billing. See the following point for details.
-* Access to the Azure-hosted RHUI is included in the RHEL PAYG image price. If you unregister a PAYG RHEL VM from the Azure-hosted RHUI that does not convert the virtual machine into a bring-your-own-license (BYOL) type of VM. If you register the same VM with another source of updates, you might incur _indirect_ double charges. You're charged the first time for the Azure RHEL software fee. You're charged the second time for Red Hat subscriptions that were purchased previously. If you consistently need to use an update infrastructure other than Azure-hosted RHUI, consider registering to use the [RHEL BYOS images](https://aka.ms/rhel-byos).
+* Access to the Azure-hosted RHUI is included in the RHEL PAYG image price. If you unregister a PAYG RHEL VM from the Azure-hosted RHUI that does not convert the virtual machine into a bring-your-own-license (BYOL) type of VM. If you register the same VM with another source of updates, you might incur _indirect_ double charges. You're charged the first time for the Azure RHEL software fee. You're charged the second time for Red Hat subscriptions that were purchased previously. If you consistently need to use an update infrastructure other than Azure-hosted RHUI, consider registering to use the [RHEL BYOS images](../workloads/redhat/byos.md).
 
 * RHEL SAP PAYG images in Azure (RHEL for SAP, RHEL for SAP HANA, and RHEL for SAP Business Applications) are connected to dedicated RHUI channels that remain on the specific RHEL minor version as required for SAP certification.
 

articles/virtual-machines/workloads/redhat/byos.md

@@ -0,0 +1,195 @@
+---
+title: Red Hat Enterprise Linux bring-your-own-susbcription Azure images | Microsoft Docs
+description: Learn about bring-your-own-subscription images for Red Hat Enterprise Linux on Azure
+services: virtual-machines-linux
+documentationcenter: ''
+author: asinn826
+manager: BorisB2015
+editor: ''
+
+ms.assetid: f495f1b4-ae24-46b9-8d26-c617ce3daf3a
+ms.service: virtual-machines-linux
+ms.devlang: na
+ms.topic: article
+ms.tgt_pltfrm: vm-linux
+ms.workload: infrastructure-services
+ms.date: 6/6/2019
+ms.author: alsin
+
+---
+
+# Red Hat Enterprise Linux Bring-Your-Own-Subscription Gold Images in Azure
+Red Hat Enterprise Linux (RHEL) images are available in Azure via a pay-as-you-go (PAYG) or bring-your-own-subscription (Red Hat Gold Image) model. This document provides an overview of the Red Hat Gold Images in Azure.
+
+## Important points to consider
+
+- The Red Hat Gold Images provided in this program are production-ready RHEL images similar the RHEL PAYG images in the Azure Gallery/Marketplace. The registration process to obtain the images is in preview.
+
+- The images follow our current policies described in [Red Hat Enterprise Linux images on Azure](./redhat-images.md)
+
+- Standard support policies apply to VMs created from these images
+
+- The VMs provisioned from Red Hat Gold Images do not carry RHEL fees associated with RHEL PAYG images
+
+- The images are unentitled, so you must use subscription-manager to register and subscribe the VMs to get updates from Red Hat directly
+
+- It is currently not possible to dynamically switch between BYOS and PAYG billing models for Linux images. Redeploying the VM from the respective image is required to switch the billing model
+
+- Azure Disk Encryption (ADE) is supported on these Red Hat Gold Images. ADE support is currently in preview. You must register with Red Hat using subscription-manager before configuring ADE. Once registered, to configure ADE refer to: [Enable Azure Disk Encryption for Linux IaaS VMs](https://docs.microsoft.com/azure/virtual-machines/linux/disk-encryption-overview)
+
+- While the images won’t change (beyond standard updates and patches), the registration process is in preview and the flow will be further improved to streamline the process
+
+- You have full control of the VMs already provisioned from these images or its snapshots regardless of the final implementation
+
+## Requirements and conditions to access the Red Hat Gold Images
+
+1. Get familiar with the [Red Hat Cloud Access program](https://www.redhat.com/en/technologies/cloud-computing/cloud-access) terms and enable your Red Hat subscriptions for Cloud Access at [Red Hat Subscription Manager](https://access.redhat.com/management/cloud). You will need to have on hand the Azure subscription(s) that are going to be registered for Cloud Access.
+
+1. If you have enabled Red Hat subscriptions for Cloud Access that meet the proper eligibility requirements, your Azure subscription(s) will be automatically be enabled for Gold Image access.
+
+### Expected time for image access
+
+Upon completing the Cloud Access enablement steps, Red Hat will validate your eligibility for the Red Hat Gold Images. If validation is successful, you will receive access to the Gold Images within three hours.
+
+## Use the Red Hat Gold Images from the Azure portal
+
+1. After your Azure subscription receives access to Red Hat Gold images, you can locate them in the [Azure portal](https://portal.azure.com) by navigating to **Create a Resource** and then **See all**.
+
+1. At the top of the page, you will see that you have private offers.
+
+    ![Marketplace private offers](./media/rhel-byos-privateoffers.png)
+
+1. You can click on the purple link or scroll down to the bottom of the page to see your private offers.
+
+1. The rest of provisioning in the UI will be no different to any other existing Red Hat image. Choose your RHEL version and follow the prompts to provision your VM. This process will also let you accept the terms of the image at the final step.
+
+>[!NOTE]
+>These steps so far will not enable your Red Hat Gold Image image for programmatic deployment – an additional step will be required as described in the “Additional Information” section below.
+
+The rest of this document focuses on the CLI method to provision and accept terms on the image. The UI and CLI are fully interchangeable as far as the final result (a provisioned RHEL Gold Image VM) is concerned.
+
+## Use the Red Hat Gold Images from the Azure CLI
+The following set of instructions will walk you through the initial deployment process for a RHEL VM using the Azure CLI. These instructions assume that you have the [Azure CLI installed](https://docs.microsoft.com/cli/azure/install-azure-cli).
+
+>[!IMPORTANT]
+>Make sure you use all lowercase letters in the publisher, offer, plan, and image references for all the following commands
+
+1. Check that you are in your desired subscription:
+    ```azurecli
+    az account show -o=json
+    ```
+
+1. Create a resource group for your Red Hat Gold Image VM:
+    ```azurecli
+    az group create --name <name> --location <location>
+    ```
+
+1. Accept the image terms:
+    ```azurecli
+    az vm image terms accept --publisher redhat --offer rhel-byos --plan <SKU value here> -o=jsonc
+
+    # Example:
+    az vm image terms accept --publisher redhat --offer rhel-byos --plan rhel-lvm75 -o=jsonc
+
+    OR
+
+    az vm image terms accept --urn RedHat:rhel-byos:rhel-lvm8:8.0.20190620
+    ```
+    >[!NOTE]
+    >These terms need to be accepted *once per Azure subscription, per image SKU*.
+
+1. (Optional) Validate your VM deployment with the following command :
+    ```azurecli
+    az vm create -n <VM name> -g <resource group name> --image <image urn> --validate
+
+    # Example:
+    az vm create -n rhel-byos-vm -g rhel-byos-group --image RedHat:rhel-byos:rhel-lvm75:7.5.20190620
+    ```
+
+1. Provision your VM by running the same command as above without the `--validate` argument:
+    ```azurecli
+    az vm create -n <VM name> -g <resource group name> --image <image urn> --validate
+    ```
+
+1. SSH into your VM and verify that you have an unentitled image. To do this, run `sudo yum repolist` (for RHEL 8 use `sudo dnf repolist`). The output will ask you to use subscription-manager to register the VM with Red Hat.
+
+>[!NOTE]
+>On RHEL 8 `dnf` and `yum` are interchangeable, more about this in the [RHEL 8 Admin Guide](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/configuring_basic_system_settings/installing-software-with-yum_configuring-basic-system-settings).
+
+
+## Use the Red Hat Gold Images from the Azure PowerShell Cmdlet
+The following is an example script. You should replace the Resource Group, location, VM name, login information, and other variables with the configuration of your choosing. Publisher and plan information must be lowercase.
+```powershell-interactive
+    # Variables for common values
+    $resourceGroup = "testbyos"
+    $location = "canadaeast"
+    $vmName = "test01"
+
+    # Define user name and blank password
+    $securePassword = ConvertTo-SecureString 'Desjardinslab1!' -AsPlainText -Force
+    $cred = New-Object System.Management.Automation.PSCredential("azureuser",$securePassword)
+    Get-AzureRmMarketplaceTerms -Publisher RedHat -Product rhel-byos -Name rhel-lvm75 | SetAzureRmMarketplaceTerms -Accept
+    
+    # Create a resource group
+    New-AzureRmResourceGroup -Name $resourceGroup -Location $location
+    
+    # Create a subnet configuration
+    $subnetConfig = New-AzureRmVirtualNetworkSubnetConfig -Name mySubnet -AddressPrefix 192.168.1.0/24
+
+    # Create a virtual network
+    $vnet = New-AzureRmVirtualNetwork -ResourceGroupName $resourceGroup -Location
+    $location `-Name MYvNET -AddressPrefix 192.168.0.0/16 -Subnet $subnetConfig
+
+    # Create a public IP address and specify a DNS name
+    $pip = New-AzureRmPublicIpAddress -ResourceGroupName $resourceGroup -Location
+    $location `-Name "mypublicdns$(Get-Random)" -AllocationMethod Static -IdleTimeoutInMinutes 4
+    
+    # Create an inbound network security group rule for port 22
+    $nsgRuleSSH = New-AzureRmNetworkSecurityRuleConfig -Name
+    myNetworkSecurityGroupRuleSSH -Protocol Tcp `
+    -Direction Inbound -Priority 1000 -SourceAddressPrefix * -SourcePortRange * -
+    DestinationAddressPrefix * `-DestinationPortRange 22 -Access Allow
+
+    # Create a network security group
+    $nsg = New-AzureRmNetworkSecurityGroup -ResourceGroupName $resourceGroup -Location
+    $location `-Name myNetworkSecurityGroup -SecurityRules $nsgRuleSSH
+
+    # Create a virtual network card and associate with public IP address and NSG
+    $nic = New-AzureRmNetworkInterface -Name myNic -ResourceGroupName $resourceGroup -
+    Location $location `-SubnetId $vnet.Subnets[0].Id -PublicIpAddressId $pip.Id -NetworkSecurityGroupId $nsg.Id
+
+    # Create a virtual machine configuration
+    $vmConfig = New-AzureRmVMConfig -VMName $vmName -VMSize Standard_D3_v2 |
+    Set-AzureRmVMOperatingSystem -Linux -ComputerName $vmName -Credential $cred |
+    Set-AzureRmVMSourceImage -PublisherName redhat -Offer rhel-byos -Skus rhel-lvm75 -Version latest | Add-     AzureRmVMNetworkInterface -Id $nic.Id
+    Set-AzureRmVMPlan -VM $vmConfig -Publisher redhat -Product rhel-byos -Name "rhel-lvm75"
+ 
+    # Configure SSH Keys
+    #$sshPublicKey = Get-Content "$env:USERPROFILE\.ssh\id_rsa.pub"
+    #Add-AzureRmVMSshPublicKey -VM $vmconfig -KeyData $sshPublicKey -Path "/home/azureuser/.ssh/authorized_keys"
+    
+    # Create a virtual machine
+    New-AzureRmVM -ResourceGroupName $resourceGroup -Location $location -VM $vmConfig
+```
+
+## Additional information
+- If you attempt to provision a VM on a subscription that is not enabled for this offer, you will get the following error and you should contact Microsoft or Red Hat to enable your subscription.
+    ```
+    "Offer with PublisherId: redhat, OfferId: rhel-byos, PlanId: rhel-lvm75 is private and can not be purchased by subscriptionId: GUID"
+    ```
+
+- If you create a snapshot from the RHEL BYOS image AND publish the image in [Shared Image Gallery](https://docs.microsoft.com/azure/virtual-machines/linux/shared-image-galleries), you will need to provide plan information that matches the original source of the snapshot. For example, the command might look like (note the plan parameters in the final line):
+    ```azurecli
+    az vm create –image \
+    "/subscriptions/GUID/resourceGroups/GroupName/providers/Microsoft.Compute/galleries/GalleryName/images/ImageName/versions/1.0.0" \
+    -g AnotherGroupName --location EastUS2 -n VMName \
+    --plan-publisher redhat --plan-product rhel-byos --plan-name rhel-lvm75
+    ```
+
+- If you are using automation to provision VMs from the RHEL BYOS images, you will need to provide plan parameters similar to what was shown above. For example, if you are using Terraform, you would provide the plan information in a [plan block](https://www.terraform.io/docs/providers/azurerm/r/virtual_machine.html#plan).
+
+## Next steps
+* Step-by-step guides and program details for Cloud Access are available in the [Red Hat Cloud Access documentation.](https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/red_hat_cloud_access_reference_guide/index)
+* Learn more about the [Azure Red Hat Update Infrastructure](./redhat-rhui.md).
+* To learn more about the Red Hat images in Azure, go to the [documentation page](./redhat-images.md).
+* Information on Red Hat support policies for all versions of RHEL can be found on the [Red Hat Enterprise Linux Life Cycle](https://access.redhat.com/support/policy/updates/errata) page.

articles/virtual-machines/workloads/redhat/redhat-overview.md renamed to articles/virtual-machines/workloads/redhat/overview.md

@@ -26,8 +26,10 @@ Azure offers a variety of RHEL PAYG images. These images come properly entitled
 
 You may want to use the PAYG images if you don't want to worry about paying separately for the appropriate number of subscriptions.
 
-### Bring-your-own-subscription (BYOS) images
-Azure also offers RHEL BYOS images. These images may be useful to customers who have existing Red Hat subscriptions and want to use them in Azure. You are required to convert your existing subscriptions into Cloud Access subscriptions before you can use them in Azure. Access to these images is granted only when Red Hat verifies that you have sufficient Cloud Access subscriptions. Using these images allows a customer to avoid double-billing that may be incurred from using the PAYG images. You may request access to the BYOS images [here](https://aka.ms/rhel-byos).
+### Red Hat Gold Images (`rhel-byos`)
+Azure also offers Red Hat Gold Images. These images may be useful to customers who have existing Red Hat subscriptions and want to use them in Azure. You are required to enable your existing Red Hat subscriptions for Red Hat Cloud Access before you can use them in Azure. Access to these images is granted automatically when your Red Hat subscriptions are enabled for Cloud Access and meet the eligibility requirements. Using these images allows a customer to avoid double-billing that may be incurred from using the PAYG images.
+* [Learn how to enable your Red Hat subscriptions for Cloud Access with Azure](https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/red_hat_cloud_access_reference_guide/con-enable-subs)
+* [Learn how to locate Red Hat Gold Images in the Azure portal, CLI, or PowerShell Cmdlet](./byos.md)
 
 > [!NOTE]
 > Note on double billing: Double billing is incurred when a user pays twice for RHEL subscriptions. This usually happens when a customer uses subscription-manager to attach an entitlement on a RHEL PAYG VM. For example, a customer that uses subscription-manager to attach an entitlement for SAP packages on a RHEL PAYG image will indirectly be double-billed because they will pay twice for RHEL - once through the PAYG premium fee and once through their SAP subscription. This will not happen to BYOS image users.
@@ -41,4 +43,4 @@ RHEL images connected to RHUI will, by default, update to the latest minor versi
 ## Next steps
 * Learn more about [RHEL images on Azure](./redhat-images.md)
 * Learn more about [Red Hat Update Infrastructure](./redhat-rhui.md)
-* Learn more about the [RHEL BYOS offer](./redhat-byos.md)
+* Learn more about the [Red Hat Gold Image (`rhel-byos`) offer](./byos.md)