Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • v2.28.0
  • v2.27.0
  • v2.25.1
  • v2.24.3
  • v2.26.0
  • v2.24.2
  • v2.25.0
  • v2.24.1
  • v2.22.2
  • v2.23.3
  • v2.24.0
  • v2.23.2
  • v2.23.1
  • v2.23.0
  • v2.22.1
  • v2.22.0
  • v2.21.0
  • v2.20.0
  • v2.19.1
  • v2.18.2
21 results

azure.md

Blame
    • azure.md 2.62 KiB

    Azure

    To deploy Kubernetes on Azure uncomment the cloud_provider option in group_vars/all.yml and set it to 'azure'.

    All your instances are required to run in a resource group and a routing table has to be attached to the subnet your instances are in.

    Not all features are supported yet though, for a list of the current status have a look here

    Parameters

    Before creating the instances you must first set the azure_ variables in the group_vars/all.yml file.

    All of the values can be retrieved using the azure cli tool which can be downloaded here: https://docs.microsoft.com/en-gb/azure/xplat-cli-install After installation you have to run azure login to get access to your account.

    azure_tenant_id + azure_subscription_id

    run azure account show to retrieve your subscription id and tenant id: azure_tenant_id -> Tenant ID field azure_subscription_id -> ID field

    azure_location

    The region your instances are located, can be something like westeurope or westcentralus. A full list of region names can be retrieved via azure location list

    azure_resource_group

    The name of the resource group your instances are in, can be retrieved via azure group list

    azure_vnet_name

    The name of the virtual network your instances are in, can be retrieved via azure network vnet list

    azure_subnet_name

    The name of the subnet your instances are in, can be retrieved via azure network vnet subnet list RESOURCE_GROUP VNET_NAME

    azure_security_group_name

    The name of the network security group your instances are in, can be retrieved via azure network nsg list

    azure_aad_client_id + azure_aad_client_secret

    These will have to be generated first:

    • Create an Azure AD Application with: azure ad app create --name kubernetes --identifier-uris http://kubernetes --home-page http://example.com --password CLIENT_SECRET The name, identifier-uri, home-page and the password can be choosen Note the AppId in the output.
    • Create Service principal for the application with: azure ad sp create --applicationId AppId This is the AppId from the last command
    • Create the role assignment with: azure role assignment create --spn http://kubernetes -o "Owner" -c /subscriptions/SUBSCRIPTION_ID

    azure_aad_client_id must be set to the AppId, azure_aad_client_secret is your choosen secret.

    Provisioning Azure with Resource Group Templates

    You'll find Resource Group Templates and scripts to provision the required infrastructure to Azure in contrib/azurerm