Challenge
- Outdated system policies require frequent manual updates and intervention.
- Complex infrastructure running more than 1000+ resources.
Solution
DSC – Desired state configuration provides a highly available configuration management solution, which consistently deploys, reliably monitors, and automatically updates the desired state of all IT resources at scale – both in the cloud and on-prem.
- Created various PowerShell modules to create, deploy and maintain VM (cloud/on-prem).
- Automated scaling up of resources, backup, and schedule maintenance.
- Created compliance reports, such as security policy, firewall rules, IIS, registries, and certificate updates.
Result
- Controlled environment, where script for creating a new VM is integrated with ticketing tool.
- All VM creation tickets will be picked up by the API and fed to DSC. Based on metrics, a VM will be created, and email sent to the user after all the company policies are successfully applied.
- DSC will continually monitor the Azure environment every 30 minutes. If any machine is found with obsolete policies, or any unidentified software against the company policy, it will alert the immediate manager, and security team with an automated email as a standard security measure.
- One-stop automated solution maintains the infrastructure at 96% compliance.
