playbooks

home / skills / openclaw / skills / azure-cli

azure-cli skill

/skills/ddevaal/azure-cli

This skill helps you manage Azure resources efficiently via the CLI, enabling authentication, scripting, and automation across compute, storage, and networking.

npx playbooks add skill openclaw/skills --skill azure-cli

Review the files below or copy the command above to add this skill to your agents.

Files (9)
SKILL.md
8.6 KB
---
name: Azure CLI
description: Comprehensive Azure Cloud Platform management via command-line interface
license: MIT
metadata:
  author: Dennis de Vaal <[email protected]>
  version: "1.0.0"
  keywords: "azure,cloud,infrastructure,devops,iac,management,scripting"
repository: https://github.com/Azure/azure-cli
compatibility:
  - platform: macOS
    min_version: "10.12"
  - platform: Linux
    min_version: "Ubuntu 18.04"
  - platform: Windows
    min_version: "Windows 10"
---

# Azure CLI Skill

**Master the Azure command-line interface for cloud infrastructure management, automation, and DevOps workflows.**

Azure CLI is Microsoft's powerful cross-platform command-line tool for managing Azure resources. This skill provides comprehensive knowledge of Azure CLI commands, authentication, resource management, and automation patterns.

## What You'll Learn

### Core Concepts
- Azure subscription and resource group architecture
- Authentication methods and credential management
- Resource Provider organization and registration
- Global parameters, output formatting, and query syntax
- Automation scripting and error handling

### Major Service Areas (66 command modules)
- **Compute:** Virtual Machines, Scale Sets, Kubernetes (AKS), Containers
- **Networking:** Virtual Networks, Load Balancers, CDN, Traffic Manager
- **Storage & Data:** Storage Accounts, Data Lake, Cosmos DB, Databases
- **Application Services:** App Service, Functions, Container Apps
- **Databases:** SQL Server, MySQL, PostgreSQL, CosmosDB
- **Integration & Messaging:** Event Hubs, Service Bus, Logic Apps
- **Monitoring & Management:** Azure Monitor, Policy, RBAC, Cost Management
- **AI & Machine Learning:** Cognitive Services, Machine Learning
- **DevOps:** Azure DevOps, Pipelines, Extensions

## Quick Start

### Installation

**macOS:**
```bash
brew install azure-cli
```

**Linux (Ubuntu/Debian):**
```bash
curl -sL https://aka.ms/InstallAzureCliLinux | bash
```

**Windows:**
```powershell
choco install azure-cli
# Or download MSI from https://aka.ms/InstallAzureCliWindowsMSI
```

**Verify Installation:**
```bash
az --version          # Show version
az --help             # Show general help
```

### First Steps

```bash
# 1. Login to Azure (opens browser for authentication)
az login

# 2. View your subscriptions
az account list

# 3. Set default subscription (optional)
az account set --subscription "My Subscription"

# 4. Create a resource group
az group create -g myResourceGroup -l eastus

# 5. List your resource groups
az group list
```

## Essential Commands

### Authentication & Accounts

```bash
az login                                    # Interactive login
az login --service-principal -u APP_ID -p PASSWORD -t TENANT_ID
az login --identity                         # Managed identity
az logout                                   # Sign out
az account show                             # Current account
az account list                             # All accounts
az account set --subscription SUBSCRIPTION  # Set default
```

### Global Flags (Use with Any Command)

```bash
--subscription ID       # Target subscription
--resource-group -g RG  # Target resource group
--output -o json|table|tsv|yaml  # Output format
--query JMESPATH_QUERY  # Filter/extract output
--verbose -v            # Verbose output
--debug                 # Debug mode
--help -h               # Command help
```

### Resource Groups

```bash
az group list           # List all resource groups
az group create -g RG -l LOCATION  # Create
az group delete -g RG   # Delete
az group show -g RG     # Get details
az group update -g RG --tags key=value  # Update tags
```

### Virtual Machines (Compute)

```bash
az vm create -g RG -n VM_NAME --image UbuntuLTS
az vm list -g RG
az vm show -g RG -n VM_NAME
az vm start -g RG -n VM_NAME
az vm stop -g RG -n VM_NAME
az vm restart -g RG -n VM_NAME
az vm delete -g RG -n VM_NAME
```

### Storage Operations

```bash
az storage account create -g RG -n ACCOUNT --sku Standard_LRS
az storage account list
az storage container create --account-name ACCOUNT -n CONTAINER
az storage blob upload --account-name ACCOUNT -c CONTAINER -n BLOB -f LOCAL_FILE
az storage blob download --account-name ACCOUNT -c CONTAINER -n BLOB -f LOCAL_FILE
```

### Azure Kubernetes Service (AKS)

```bash
az aks create -g RG -n CLUSTER --node-count 2
az aks get-credentials -g RG -n CLUSTER
az aks list
az aks show -g RG -n CLUSTER
az aks delete -g RG -n CLUSTER
```

## Common Patterns

### Pattern 1: Output Formatting
```bash
# Get only specific fields
az vm list --query "[].{name: name, state: powerState}"

# Get just the names
az vm list --query "[].name" -o tsv

# Filter and extract
az vm list --query "[?powerState=='VM running'].name"
```

### Pattern 2: Automation & Scripting
```bash
#!/bin/bash
set -e  # Exit on error

# Get VM ID
VM_ID=$(az vm create \
  -g myRG \
  -n myVM \
  --image UbuntuLTS \
  --query id \
  --output tsv)

echo "Created VM: $VM_ID"

# Check provisioning state
az vm show --ids "$VM_ID" --query provisioningState
```

### Pattern 3: Batch Operations
```bash
# Delete all VMs in a resource group
az vm list -g myRG -d --query "[].id" -o tsv | xargs az vm delete --ids

# List all resources by tag
az resource list --tag env=production
```

### Pattern 4: Using Defaults
```bash
# Set defaults to reduce typing
az configure --defaults group=myRG subscription=mySubscription location=eastus

# Now commands are simpler
az vm create -n myVM --image UbuntuLTS  # group, subscription, location inherited
```

## Helper Scripts

This skill includes helper bash scripts for common operations:

- **azure-vm-status.sh** — Check VM status across subscription
- **azure-resource-cleanup.sh** — Identify and remove unused resources
- **azure-storage-analysis.sh** — Analyze storage account usage and costs
- **azure-subscription-info.sh** — Get subscription quotas and limits
- **azure-rg-deploy.sh** — Deploy infrastructure with monitoring

**Usage:**
```bash
./scripts/azure-vm-status.sh -g myResourceGroup
./scripts/azure-storage-analysis.sh --subscription mySubscription
```

## Advanced Topics

### Output Querying with JMESPath
Azure CLI supports powerful output filtering using JMESPath:

```bash
# Sort results
az vm list --query "sort_by([], &name)"

# Complex filtering
az vm list --query "[?location=='eastus' && powerState=='VM running'].name"

# Aggregation
az vm list --query "length([])"  # Count VMs
```

### Error Handling
```bash
# Check exit codes
az vm create -g RG -n VM --image UbuntuLTS
if [ $? -eq 0 ]; then
  echo "VM created successfully"
else
  echo "Failed to create VM"
  exit 1
fi
```

### Authentication Methods

**Service Principal (Automation):**
```bash
az login --service-principal \
  --username $AZURE_CLIENT_ID \
  --password $AZURE_CLIENT_SECRET \
  --tenant $AZURE_TENANT_ID
```

**Managed Identity (Azure Resources):**
```bash
# On an Azure VM or Container Instance
az login --identity
```

**Token-based (CI/CD):**
```bash
echo "$AZURE_ACCESS_TOKEN" | az login --service-principal -u $AZURE_CLIENT_ID --password-stdin --tenant $AZURE_TENANT_ID
```

## Key Resources

- **Official Documentation:** https://learn.microsoft.com/en-us/cli/azure/
- **Command Reference:** https://learn.microsoft.com/en-us/cli/azure/reference-index
- **GitHub Repository:** https://github.com/Azure/azure-cli
- **Comprehensive Guide:** See [references/REFERENCE.md](references/REFERENCE.md)
- **Release Notes:** https://github.com/Azure/azure-cli/releases

## Tips & Tricks

1. **Enable Tab Completion:**
   ```bash
   # macOS with Homebrew
   eval "$(az completion init zsh)"
   
   # Linux (bash)
   eval "$(az completion init bash)"
   ```

2. **Find Commands Quickly:**
   ```bash
   az find "create virtual machine"  # Search for commands
   ```

3. **Use --no-wait for Long Operations:**
   ```bash
   az vm create -g RG -n VM --image UbuntuLTS --no-wait
   # Check status later with az vm show
   ```

4. **Save Frequently Used Parameters:**
   ```bash
   az configure --defaults group=myRG location=eastus
   ```

5. **Combine with Other Tools:**
   ```bash
   # Use with jq for advanced JSON processing
   az vm list | jq '.[] | select(.powerState == "VM running") | .name'
   
   # Use with xargs for batch operations
   az storage account list --query "[].name" -o tsv | xargs -I {} az storage account show -g RG -n {}
   ```

## Next Steps

- Review [references/REFERENCE.md](references/REFERENCE.md) for comprehensive command documentation
- Explore helper scripts in the `scripts/` directory
- Practice with non-production resources first
- Review Azure best practices and cost optimization strategies

---

**Version:** 1.0.0  
**License:** MIT  
**Compatible with:** Azure CLI v2.50+, Azure Subscription

Overview

This skill teaches practical use of the Azure CLI to manage Azure cloud resources, automate tasks, and integrate with DevOps workflows. It covers authentication, core command modules (compute, networking, storage, databases, monitoring, AI), output querying, and common automation patterns. The content includes ready-to-run commands, helper scripts, and troubleshooting tips to speed up real-world operations.

How this skill works

The skill inspects and explains Azure CLI commands, global flags, and authentication methods so you can run, script, and automate Azure management tasks. It demonstrates resource lifecycle operations (create, list, show, update, delete), output filtering with JMESPath, and batch/automation patterns using shell scripts. Helper scripts and examples show practical checks, cleanup tasks, and subscription-level reporting.

When to use it

  • Provision or manage infrastructure from the command line or CI/CD pipelines.
  • Automate repeatable tasks like VM creation, storage uploads, and resource cleanup.
  • Query and filter resource state across subscriptions and resource groups.
  • Integrate Azure actions into shell scripts or deployment pipelines.
  • Troubleshoot resource issues and gather diagnostic information.

Best practices

  • Use service principals or managed identities for non-interactive automation to avoid sharing personal credentials.
  • Set defaults (group, subscription, location) to reduce command verbosity and mistakes.
  • Always test scripts against non-production resources and use --no-wait with monitoring for long-running operations.
  • Format and filter output with --query and --output for reliable parsing in scripts.
  • Enable verbose or debug flags only when diagnosing failures; capture exit codes and handle errors in scripts.

Example use cases

  • Create and configure a VM fleet, then capture IDs for downstream automation.
  • Deploy and manage AKS clusters and retrieve kubeconfig for kubectl access.
  • Automate storage account analysis and blob upload/download in backup workflows.
  • Batch-delete unused resources or purge dev/test environments using tag filters.
  • Collect subscription quotas and usage metrics for cost and capacity planning.

FAQ

How do I authenticate for automated scripts?

Use a service principal with az login --service-principal and store credentials securely in your CI/CD secrets store. Alternatively, use managed identity when running from Azure-hosted resources.

What’s the safest way to test commands?

Run commands against a dedicated non-production subscription or resource group, use --dry-run patterns where possible, and validate outputs with --query and -o tsv before applying destructive actions.