1.2. Subscribe to inoQulate from the Azure Marketplace#

Make sure you have completed Before You Start before subscribing to the solution.

1.2.1. inoQulate Marketplace Listing#

  1. Click Get It Now on this link to subscribe to the solution on the Azure Marketplace.

    _images/get_it_now.png
  2. Click Continue on the prompt.

  3. Click Create.

1.2.2. Basics#

  1. In Subscription, select an Azure subscription.

  2. In Resource group in the next line, create a new resource group, naming it inoQulate.

  3. Select a Region to deploy all resources in the solution.

  4. Enter a value for Domain Name Label Prefix.

    • This value sets a prefix for the website addresses to the CA and Signer applications.

    • The recommended value is your company name in lowercase letters, substituting spaces for dashes.

  5. Enter inoQulate for the Application Name.

  6. Leave Managed Resource Group as is. Your page should look similar to this screenshot.

    _images/create_inoQulate_basics.png
  7. Click Next.

1.2.3. Kubernetes Cluster#

Note that some fields have been populated with recommended values that you should not change unless necessary. The CA and Signer Domain Name Label configures the domain you will access the application, as described in References for this page in the next section.

These fields are listed in the table below:

Table 1.2 Recommended Configurations#

Field

Value

Cluster Name

inoQulate

Node Size

Standard_B2s or
Standard_B2ms or
Standard_F2s_v2 or
Standard_F4s_v2

Database Admin Username

postgres

CA Domain Name Label

<domain-prefix>-inoqulate-ca

Database Username for CA

ejbca

Signer Domain Name Label

<domain-prefix>-inoqulate-signer

Database Username for Signer

signserver

  1. In Object ID of the administrator, enter the Object ID of the administrator account that will manage the solution.

  2. Enter the Database Admin Password, and the corresponding Confirm Password with the corresponding credentials as prepared in Database Admin Credentials.

  3. Enter the Database Password for CA, and the corresponding Confirm Password with the corresponding credentials as prepared in Database Credentials for Certification Authority Software.

  4. Enter the Database Password for Signer, and the corresponding Confirm Password with the corresponding credentials as prepared in Database Credentials for Signer Software.

  5. Enter Run Schedule the frequency and timing of the service runner runs.

    • This should be represented in a cron schedule expression.

    • The default 0 0 * * * evaluates to “everyday at midnight” - so that everyday at midnight, your PDFs are picked up and inoQulated.

    • https://crontab.guru is a good resource for crafting cron schedule expressions.

  6. Enter the Trust Store Password, and the corresponding Confirm Password with the corresponding credentials as prepared in Trust Store Credentials. Your page should look similar to this screenshot.

    _images/create_inoQulate_k8s.png
  7. Click Next.

1.2.4. Management VM#

  1. Tick the Deploy management VM checkbox.

  2. Select Standard D4s v3 for your VM size. A VM with at least 4 vcpus is recommended.

  3. Enter the VM Admin Username for Login Username and VM Admin Password for Login Password and Confirm Password as prepared in VM Credentials.

  4. In Allowed IP Address, enter the Public IP Address of the machine that will be used to RDP to the VM to manage the solution. Your page should look similar to this screenshot.

    _images/create_inoQulate_vm.png
  5. Click Next.

1.2.5. Tags#

  1. Enter app for Name and inoQulate for Value.

    _images/create_inoQulate_tags.png
  2. Click Next: Review + create.

1.2.6. Review#

  1. Review the details and click Create.